Source |
DarkTrace |
Identifiant |
8342171 |
Date de publication |
2023-06-05 11:01:52 (vue: 2023-06-05 15:06:46) |
Titre |
Darktrace vs Cobalt Strike: comment Antigena a intercepté et retardé une intrusion de frappe de cobalt Darktrace vs Cobalt Strike: How Antigena intercepted and delayed a Cobalt Strike intrusion |
Texte |
Un attaquant a exploité les vulnérabilités dans LOG4J pour installer Bughatch, Cobalt Strike Beacon et Netsupport sur un serveur VMware Exchange orienté Internet dans le réseau d'un client DarkTrace.En inhibant les tentatives ultérieures de l'attaquant \\ pour communiquer avec le serveur compromis, le réseau Antigena a probablement empêché les ransomwares.
An attacker exploited vulnerabilities in Log4j to install Bughatch, Cobalt Strike Beacon, and NetSupport onto an Internet-facing VMware Exchange server within the network of a Darktrace customer. By inhibiting the attacker\'s subsequent attempts to communicate with the compromised server, Antigena Network likely prevented ransomware from being deployed. |
Envoyé |
Oui |
Condensat |
antigena attacker attempts beacon being bughatch cobalt communicate compromised customer darktrace delayed deployed exchange exploited facing from how inhibiting install intercepted internet intrusion likely log4j netsupport network onto prevented ransomware server strike strike: subsequent vmware vulnerabilities within |
Tags |
Ransomware
|
Stories |
|
Notes |
★★
|
Move |
|