Magnet Goblin Targets Publicly Facing Servers Using 1-Day Vulnerabilities

Check Point reports Magnet Goblin is a financially motivated threat actor that quickly adopts and leverages 1-day vulnerabilities in public-facing services as an initial infection vector. At least in one case of Ivanti Connect Secure VPN (CVE-2024-21887) the exploit entered the groups arsenal as fast as within 1 day after a POC for it was published.