This article has been indexed from Securelist
We discovered a campaign delivering the Tomiris backdoor that shows a number of similarities with the Sunshuttle malware distributed by DarkHalo APT and target overlaps with Kazuar.
Read the original article: DarkHalo after SolarWinds: the Tomiris connection