TechNaduxHunt APT campaign targets Kuwait using Exchange & IIS exploits.
Custom PowerShell backdoors like Hisoka & TriFive enable stealth C2 via email drafts.
https://www.technadu.com/xhunt-apt-group-spies-on-kuwait-leveraging-microsoft-exchange-iis-and-custom-backdoors/613022/
