Mimo Targets Magento, Docker, and Cloud Environments (Campaign)

[email protected] (Wiz Threat Research) 2025-07-21T00:00:00+00:00 View Original

Full Report

The threat actor known as Mimo (or Mimo’lette) has expanded its intrusion operations from Craft CMS to the Magento ecommerce platform, Docker environments, and cloud instances. Mimo exploits PHP-FPM vulnerabilities in Magento to gain initial access, establishes persistence usi...

Analysis Summary