Infostealer Masquerades as PoC Code Targeting Recent LDAP Vulnerability - SecurityWeek

Threat actors are distributing information stealer malware disguised as a proof-of-concept exploit for a recent Windows LDAP vulnerability (CVE-2024-49113). The fake PoC, targeting CVE-2024-49113, replaces legitimate code with an executable that downloads and executes scripts to steal system information and upload it to an external FTP server.