Storm-0324 Abusing Microsoft Teams To Gain Initial Access And Deploy Ransomware

Storm-0324, a financially driven threat actor group, was detected delivering phishing messages using Microsoft Teams. In the past, it has been accused of disseminating phishing emails to employ remote code execution to acquire initial access to infected systems. After establishing the access, Storm-0324 often gives access to TA543 and the well-known ransomware group Sangria Tempest (also known as […]

The post Storm-0324 Abusing Microsoft Teams To Gain Initial Access And Deploy Ransomware appeared first on GBHackers - Latest Cyber Security …

abusing access actor code code execution computer security deploy emails initial access malware messages microsoft microsoft teams phishing phishing emails ransomware remote code remote code execution storm storm-0324 systems teams threat threat actor