Roast topics
Find topics
Roast it!
Roast topics
Find topics
Find it!
Login
From:
The DFIR Report
(Uncensored)
subscribe
From a Single Click: How Lunar Spider Enabled a Near Two-Month Intrusion – The DFIR Report
https://thedfirreport.com/2025/09/29/from-a-single-click-how-lunar-spider-enabled-a-near-two-month-intrusion/
links
backlinks
Tagged with:
cobaltstrike
latrodectus
bruteratel
Key Takeaways The intrusion began with a Lunar Spider linked JavaScript file disguised as a tax form that downloaded and executed Brute Ratel via a MSI installer. Multiple types of malware were dep…
