Mastodawn

🖱🛠👉👕👈 SOSOrdinet 🎣🖥️🐛 🗞️Nov 11, 2020

#ExchangeWebServices : depuis au moins le 22 Août 2019, la campagne #xHunt cible une organisation gouvernementale du #Koweït !

https://blog.sosordi.net/2020/11/exchange-web-services-depuis-au-moins-le-22-aout-2019-la-campagne-xhunt-cible-une-organisation-gouvernementale-du-koweit.html

#securite #DNS #mail #TriFive #Snugy #Cashy200

Exchange Web Services : depuis au moins le 22 Août 2019, la campagne xHunt cible une organisation gouvernementale du Koweït ! | SOSOrdi.net

SOSOrdi.net

SecurityLab Nov 10, 2020

Хакеры из xHunt вооружились новыми PowerShell-бэкдорами #xHunt, #TriFive, #Snugy https://www.securitylab.ru/news/513874.php https://twitter.com/SecurityLabnews/status/1326092242038173696/photo/1

Хакеры из xHunt вооружились новыми PowerShell-бэкдорами

Бэкдоры TriFive и Snugy использовали скрытые каналы для связи с C&C-сервером злоумышленников.

ITSEC News Nov 9, 2020

Microsoft Exchange Attack Exposes New xHunt Backdoors - An attack on the Microsoft Exchange server of an organization in Kuwait revealed two never-before-... https://threatpost.com/microsoft-exchange-attack-xhunt-backdoors/161041/ #microsoftexchangeserverattack #microsoftexchange #xhuntthreatgroup #vulnerabilities #cloudsecurity #powershell #microsoft #backdoor #cashy200 #w3sp.exe #malware #trifive #kuwait #hacks #snugy #xhunt

Microsoft Exchange Attack Exposes New xHunt Backdoors

An attack on the Microsoft Exchange server of an organization in Kuwait revealed two never-before-seen Powershell backdoors.

Threatpost - English - Global - threatpost.com