Post #8649

⚠️ Attackers are exploiting a CVSS 10.0 auth bypass in Quest KACE SMA to hijack admin accounts. Arctic Wolf observed attacks on unpatched, internet-exposed systems, with payloads delivered via curl and persistence set through registry changes. 🔗 From initial access to full domain control chain → https://thehackernews.com/2026/03/hackers-exploit-cve-2025-32975-cvss-100.html