Dossier
Cobalt Strike Beacon
Coverage of Cobalt Strike Beacon in the Nexus archive.
- New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks
A new malware family called SharkLoader is being used to deploy Cobalt Strike Beacon in cyberattacks tracked as StrikeShark. The campaign has targeted a diplomatic organization in Indonesia and government organizations in Taiwan.
- KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
A high-severity vulnerability in Digital Knowledge's KnowledgeDeliver LMS (CVE-2026-5426) was exploited as a zero-day to deploy the Godzilla web shell and Cobalt Strike Beacon. The flaw, involving hard-coded ASP.NET machine keys, has now been patched.