Chinese threat group ToddyCat is exploiting a flaw in ESET software (CVE-2024-11859) to deploy a stealthy malware called TCESB. The malware uses DLL hijacking and a vulnerable Dell driver to bypass security tools. ESET patched the issue in January 2025.

‍