Today > | 3 Medium vulnerabilities - You can now download lists of IOCs here!
1 attack reports | 0 vulnerabilities
An advanced persistent threat group, TA397, targeted a Turkish defense organization with a sophisticated attack chain. The campaign used a RAR archive containing a decoy PDF, a shortcut file, and an Alternate Data Stream with PowerShell code. The infection process involved creating a scheduled task…