Cyber Resilience

Campaign · all campaigns

Operation MidnightEclipseC0048 unknown

aka Operation MidnightEclipse

Last updated: 2026-07-03

0attributed CVEs
25ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

[Operation MidnightEclipse](https://attack.mitre.org/campaigns/C0048) was a campaign conducted in March and April 2024 that involved initial exploit of zero-day vulnerability CVE-2024-3400, a critical command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS.(Citation: Volexity UPSTYLE 2024)(Citation: Palo Alto MidnightEclipse APR 2024)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
SI-418 / 2572%
CM-616 / 2564%
AC-315 / 2560%
AC-214 / 2556%
AC-614 / 2556%
CM-214 / 2556%
CM-713 / 2552%
AC-512 / 2548%
CM-512 / 2548%
IA-212 / 2548%
SI-311 / 2544%
CA-710 / 2540%
AC-49 / 2536%
SC-79 / 2536%
RA-57 / 2528%

Co-occurring actors

None.

Similar actors

Similar TTPs