all InfoSec news
Tracking Cobalt Strike Servers Used in Cyberattacks on Ukraine
May 8, 2022, 12:53 a.m. |
Security Boulevard securityboulevard.com
On April 18, 2022, CERT-UA published alert #4490, which describes a malicious email campaign targeting Ukraine. The email attempts to deploy a Cobalt Strike beacon on the victim's system through the use of a MS Office macro. In the alert, CERT-UA provides a list of indicators of compromise (IoCs), including a list of IP addresses and domains used in the attack that are known to be Cobalt Strike command and control (C2) servers.
The post Tracking Cobalt Strike Servers …
cobalt cobalt strike cyberattacks servers threat research tracking ukraine
More from securityboulevard.com / Security Boulevard
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Penetration Tester
@ Resillion | Bengaluru, India
Senior Backend Software Engineer (Java) - Privacy Engineering (Open to remote across ANZ)
@ Canva | Sydney, Australia
(Senior) Information Security Professional (w/m/d)
@ IONOS | Deutschland - Remote
Information Security (Incident Response) Intern
@ Eurofins | Katowice, Poland
Game Penetration Tester
@ Magic Media | Belgrade, Vojvodina, Serbia - Remote