Kroll has continued to monitor BLACKBASTA actors leveraging QAKBOT to provide an initial foothold within the network. Interestingly, the use of QAKBOT has evolved since previous reporting and is now being used to install Cobalt Strike, directly reducing the dwell time of the threat actor to…
Source: www.kroll.com – Read more
Week in review: Two Cisco ASA zero-days exploited, MITRE breach, GISEC Global 2024
Cisco ASA devices were targeted by hackers using two zero-days to install backdoors. Also, an attack using Ivanti zero-day vulnerabilities resulted in a breach at