How state-backed attackers weaponized Dell security flaws for persistent access
Weekly insights on threats, vulnerabilities, and security best practices.
Dell RecoverPoint VM vulnerability CVE-2026-22769 (CVSS 10.0) exploited by Chinese APT UNC6201 since mid-2024 through hard-coded credentials, enabling complete infrastructure compromise.
CRESCENTHARVEST campaign deploys custom RAT malware against Iran protest supporters, demonstrating advanced surveillance TTPs for long-term information theft and monitoring operations.
UNC6201 threat actors exploited CVE-2026-22769, a CVSS 10.0 hard-coded credential vulnerability in Dell RecoverPoint for VMs, demonstrating sophisticated attack chains targeting enterprise backup infrastructure.
