APT Group ToddyCat Exploits ESET Vulnerability to Execute Malware

An APT group, identified as ToddyCat, has exploited a vulnerability in ESET software to discreetly execute malware, thereby bypassing security measures. Researchers from Kaspersky reported that the vulnerability, listed under the number CVE-2024-11859, is a DLL Search Order Hijacking issue. This flaw potentially allows the execution of malicious code by altering the search order of DLL libraries.