Threat Group: OilRig (APT34, Earth Simnavaz, Crambus, Cobalt Gypsy, GreenBug, Helix Kitten, Hazel Sandstorm)
Threat Type: Cyberespionage
Exploited Vulnerabilities: CVE-2024-30088 (Windows Kernel Privilege Escalation), Microsoft Exchange Web Services
Malware Used: Menorah, STEALHOOK, SC5k, OilCheck, ODAgent, OilBooster
Threat Score: High (8.5/10) — Exploitation of advanced kernel vulnerabilities and widespread espionage
