Tag
critical
threat
Payouts King Ransomware Abusing QEMU VMs for Defense Evasion
2 rules 8 TTPs 1 CVE 1 IOCThe Payouts King ransomware is leveraging QEMU VMs as a reverse SSH backdoor to execute payloads, store malicious files, and establish covert remote access tunnels, bypassing endpoint security measures.
GOLD ENCOUNTER
payouts-king
ransomware
qemu
vm
defense-evasion
2r
8t
1c
1i
critical
threat
QEMU Hypervisor Escape via virtio-snd 0-Day
2 rules 2 TTPsAn unpatched vulnerability in QEMU's virtio-snd component allows for a hypervisor escape due to an uncontrolled heap overflow.
virtualization
hypervisor
qemu
virtio-snd
heap overflow
hypervisor escape
2r
2t