Read the original article: Nefilim Actors Use Active Directory Account for a Month Before Deploying Ransomware
The actors behind the Nefilim (also known as Nemty) ransomware are making headlines for a recent intrusion in which the group took advantage of an Active Directory user account of a former employee for over a month without being detected. A report by Sophos noted that a vulnerable version of Citrix Storefront was installed at […]
The post Nefilim Actors Use Active Directory Account for a Month Before Deploying Ransomware appeared first on Binary Defense.
Read the original article: Nefilim Actors Use Active Directory Account for a Month Before Deploying Ransomware