all InfoSec news
Stopping a K-12 cyberattack (SolarMarker) with ThreatDown MDR
Malware Analysis, News and Indicators - Latest topics malware.news
In early 2024, a large K-12 school district partnered with ThreatDown MDR to strengthen its cybersecurity posture. Shortly after onboarding, ThreatDown MDR analysts detected unusual patterns of activity subsequently identified as the work of SolarMarker, a sophisticated backdoor. It became evident that SolarMarker had been present in the district’s system since at least 2021, likely exfiltrating data over several years.
Let’s dive further into the investigation’s findings and the steps taken to mitigate the threat.
SolarMarker infection
Background
The …
analysts backdoor cyberattack cybersecurity cybersecurity posture k-12 large mdr onboarding patterns posture school school district solarmarker system threatdown work