Source: Dark Reading
Storm-2603, a known threat group, has recently been reported to leverage the Velociraptor digital forensics and incident response (DFIR) tool in cyber attacks. This approach allows them to maintain ongoing access to compromised networks, enhancing their capability to deploy ransomware effectively.
The use of the Velociraptor tool signifies a shift in the operational tactics of these Chinese hackers, indicating a growing sophistication in how they conduct their cyber operations. By abusing legitimate tools, they are able to obscure their activities and potentially evade detection, making it more challenging for defenders to secure their networks against these innovative threats.
👉 Pročitaj original: Dark Reading
