<ul><li>At least one APT group has exploited a vulnerability in ESET software to stealthily execute malware, bypassing security measures.</li><li>The vulnerability, tracked as CVE-2024-11859, is a DLL Search Order Hijacking issue that potentially allow an attacker with administrator privileges to load a malicious dynamic-link library and execute its code.</li><li>The flaw in ESET software was exploited to deploy TCESB, a stealthy C++ tool that bypasses security and monitoring tools to execute payloads.</li><li>ESET addressed the vulnerability CVE-2024-11859 in January.</li></ul>

An APT group exploited ESET flaw to execute malware

Discover more