This article has been indexed from Heimdal Security Blog
Threat actors are trying to capitalize on the Kaseya ransomware attack by targeting potential victims in spam campaigns that are pushing Cobalt Strike payloads disguised as Kaseya VSA security updates in what seems to be a Kaseya malspam campaign. Cobalt Strike is a commercial, full-featured, remote access tool that bills itself as “adversary simulation software designed […]
The post A Fake Kaseya Security Update Is ‘Backdooring’ Networks Using Cobalt Strike appeared first on Heimdal Security Blog.
Read the original article: A Fake Kaseya Security Update Is ‘Backdooring’ Networks Using Cobalt Strike