Threat actors are switching away from the Cobalt Strike suite of penetration testing tools in favor of less similar frameworks. Sliver toolkit, an open-source,…
Cobalt Strike
General
Avos ransomware organisation increases its attack capabilities
We recently noticed a month-long AvosLocker promotion during a client engagement. Cobalt Strike, Sliver, and various commercial network scanners were among the tools used…
General
Hackers exploit unpatched Microsoft SQL using Cobalt Strike
Threat actors have targeted vulnerable internet-facing Microsft SQL (MS SQL) servers. The attacks entail planting the Cobalt Strike adversary simulation tool in the targeted…
Cobalt Strike
SQUIRRELWAFFLE used for deploying Qakboat and Cobalt Strike
Many spam emails are acting as a channel for an unknown malware loader. The malware loader is undocumented, and it allows attackers to access…
Cybersecurity
Cobalt Strike Usage By Threat Actors Rapidly Boomed; Proofpoint
In the latest research conducted by Proofpoint, it has come forth that adversaries are increasingly using Cobalt Strike, which is an authentic software tool…