Key Takeaways The intrusion began when a user downloaded and executed a malicious file impersonating DeskSoft’s EarthTime application but instead dropped SectopRAT malware. The threat actor d…| The DFIR Report
Key Takeaways Initial access was via a password spray attack against an exposed RDP server, targeting numerous accounts over a four-hour period. Mimikatz and Nirsoft were used to harvest credential…| The DFIR Report
LockBit resurgence sees ransomware attacks reach record high in May - SiliconANGLE| SiliconANGLE
The hacking group RansomHub claims to have published 100 gigabytes of data stolen from the Florida Department of Health after it declined to pay a ransom.| StateScoop