New: 2026 Gartner® Market Guide for Adversarial Exposure Validation
Learn More
Cymulate named a Customers' Choice in 2025 Gartner® Peer Insights™
Learn More
New Research: The Security Tradeoffs Behind AI Tooling
Learn More
An Inside Look at the Technology Behind Cymulate
Learn More
Book a Demo
Book a Demo

RIG Exploit Kit Adds New Vulnerabilities

March 2, 2023

The Rig Exploit Kit has been on the threat landscape since 2014 and was recently discovered with additional exploits for CVE-2021-26411 and CVE-2020-0674. Successful infections could result in devices infected with information stealers downloaders backdoors remote access trojans and ransomware. Malware distributed by the exploit kit includes Gozi Dridex Racoon Stealer Redline Stealer IcedID Zloader TrueBot and Royal Ransomware.

Featured Resources

View More Resources
image
blog

AKS RunCommand Vulnerability Enables Cross-Cluster Privilege Escalation

A newly disclosed weakness in Azure Kubernetes Service’s RunCommand feature created a path for attackers to intercept a privileged Entra ID access

Read More
image
blog

When AI Tools Become the Backdoor: Zero-Click RCE via Prompt Injection 

Prompt injection flaws in AI tools can trigger zero-click remote code execution through silent config poisoning.

Read More
image
blog

MITRE ATT&CK v19 Unpacked: What Changed and How to Operationalize 

MITRE ATT&CK v19 introduces major changes that reshape how organizations understand and validate adversary behavior, including retiring the Defense Evasion tactic and introducing Stealth and Defense Impairment tactics.

Read More