COBALT MIRAGE APT Group Leverages Drokbk Malware
An intrusion carried out by the COBALT MIRAGE threat group leveraged the multi-functional Drokbk malware for persistence and to execute additional commands received from the command-and-control server.
The actor took advantage of two Log4j vulnerabilities in a VMware Horizon server for initial access.
To determine its C2 server, the malware used the dead drop resolver technique and legitimate Internet services.
Featured Resources
blog
Finding the Right Fit: Vulnerability Assessment vs. Penetration Testing
With more cyber threats than ever before, protecting your organization’s assets and sensitive data has never been more critical. Businesses
blog
Cyber Threats in the Seams
It’s easy for even the most vigilant security teams to overlook a critical reality: no one fully understands all the
CUSTOMERS
Law Enforcement Agency Restores Confidence in Cyber Defenses
This small cybersecurity team is tasked with protecting the organization’s fraud services and all electronic records related to criminal investigations.
Subscribe to Our Blog
Subscribe now to get the latest insights, expert tips and updates on threat exposure validation.
Subscribe