A joint Technical Alert, TA17–293A, describing the activities of a Russian APT may contain signatures and rules likely to trigger false positives in some security systems.
Source: Threadpost
DHS Alert on Dragonfly APT Contains IOCs, Rules Likely to Trigger False Positives
- Advertisement -
APLICATIONS
New APT ChamelGang Targets Russian Energy, Aviation Orgs
First appearing in March, the group has been leveraging ProxyShell against targets in 10 countries and employs a variety of malware to steal data...
