How We Audited a High-Traffic Perl Enterprise Stack on OVH and Mitigated untrusted command injection in system utility scripts
Initial Triage: Identifying the Attack Vector Our engagement began with a critical alert from an internal monitoring system indicating anomalous outbound network traffic originating from a legacy Perl application server hosted on OVH. The traffic patterns suggested a potential command and control (C2) communication channel. The immediate suspicion fell on a common vulnerability: untrusted command […]