Ghost CMS Vulnerability Exploited to Hack Over 700 Websites

A Ghost CMS vulnerability has been exploited to compromise over 700 websites, including those of major universities and DuckDuckGo. The attack vector is not specified, but it is believed to be a zero-day exploit. The vulnerability allows attackers to gain unauthorized access to affected sites.

1. Ghost CMS is the affected tool, but no specific CVE is mentioned.
2. The impact scope is over 700 websites, including major universities and a search engine.
3. The attack chain involves exploiting a zero-day vulnerability in Ghost CMS.
4. Detection opportunities may include unusual login attempts or changes to website content.

T1210 - Exploit Public-Facing Application

Apply patches or updates to Ghost CMS as soon as possible to prevent exploitation of the vulnerability.