TI Mindmap HUB
Threat Intelligence Report

An attack campaign targeting Japanese organizations using MetaRAT. | LAC WATCH

📅 December 11, 2025 📰 www.lac.co.jp 🔍 2 CVE(s) referenced

A China-linked attack group exploited Ivanti Connect Secure vulnerabilities to target Japanese maritime organizations, deploying advanced new PlugX variants—MetaRAT and Talisman—for persistent network infiltration and credential harvesting.

vendor
CVE-2024-21893, CVE-2024-21887

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle