Storm-2603 Deploys DNS-Controlled Backdoor in Warlock and LockBit Ransomware Attacks

The threat actor linked to the exploitation of the recently disclosed security flaws in Microsoft SharePoint Server is using a bespoke command-and-control (C2) framework called AK47 C2 (also spelled ak47c2) in its operations.
The framework includes at least two different types of clients, HTTP-based and Domain Name System (DNS)-based, which have been dubbed AK47HTTP and AK47DNS, respectively, by

Total
0
Shares
Leave a Reply

Your email address will not be published. Required fields are marked *

Previous Post

Secret Blizzard Deploys Malware in ISP-Level AitM Attacks on Moscow Embassies

Next Post

You Are What You Eat: Why Your AI Security Tools Are Only as Strong as the Data You Feed Them

Related Posts
Total
0
Share