Tag: The DFIR Report

SQL Brute Force leads to Bluesky Ransomware

2023-12-04 10:12

In December 2022, we observed an intrusion on a public-facing MSSQL Server, which resulted in BlueSky ransomware. First discovered in June 2022, BlueSky ransomware has code links to Conti and … Read More The post SQL Brute Force leads to…

Read more →

NetSupport Intrusion Results in Domain Compromise

2023-11-01 17:11

NetSupport Manager is one of the oldest third-party remote access tools still currently on the market with over 33 years of history. This is the first time we will report … Read More The post NetSupport Intrusion Results in Domain…

Read more →

NetSupport Intrusion Results in Domain Compromise

2023-10-30 13:10

NetSupport Manager is one of the oldest third-party remote access tools still currently on the market with over 33 years of history. This is the first time we will report … Read More The post NetSupport Intrusion Results in Domain…

Read more →

Netsupport Intrusion Results in Domain Compromise

2023-10-30 02:10

NetSupport Manager is one of the oldest third-party remote access tools still currently on the market with over 33 years of history. This is the first time we will report … Read More The post Netsupport Intrusion Results in Domain…

Read more →

Page 3 of 3

« 1 2 3