Today > | 16 High | 14 Medium vulnerabilities   -   You can now download lists of IOCs here!

Tag: av/edr bypass

1 attack reports | 0 vulnerabilities

Attack reports

EDR Bypass Testing Reveals Extortion Actor's Toolkit

Unit 42 investigated an extortion attempt where threat actors tested an AV/EDR bypass tool on rogue systems with Cortex XDR installed. The actors purchased network access via Atera RMM and used a BYOVD technique for the bypass tool. Researchers gained visibility into the actors' systems, uncovering…

extortion
cobalt strike
rclone
mimikatz
conti
sharphound
rubeus
byovd
2024-11-02
cortex xdr
safetykatz
cybercrime forums
threat actor profiling
av/edr bypass
Published: November 2, 2024

Downloadable IOCs 0

» Click here to see all Attack Reports «