From cybersecuritynews.com
![Follina Exploit Let Hackers Compromise the Domain Controller Via RDP Session](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhtkesGLiU9BxboMvblEdoC-XEoVTk4U1Y3FHCWqjaz0Xg0m3kLOX8qewBDd6RXWjf0iQfxqBzJ8UOlHU6Z1osSLhgU6b5soEusiosFxgHkjjWQueEKoJ9N4vXTkqY_QCe1dcSMHVplO1u9fzfazLivn6EJ4MIpwktJ6PY_5wfZnIF00_RGxwsajIJGtg/s16000/Follina%20Exploit.webp)
An intrusion was detected by The DFir Report in early June 2022 that leveraged theĀ Follina vulnerability, CVE-2022-30190 to gain initial access. Apart from getting initial access it also initiated the infection chain of Qbot.