MALWARE-BACKDOOR TLS certificate securing LocalXpose reverse proxy backdoor
This event is generated when the LocalXpose backdoor attempts to securely connect to CNC proxy infrastructure.
A backdoor tunnel into the network is being opened.
Ease of attack
- Cisco Talos Intelligence Group