Bleeping Computer

TrickBot Gang Created a Custom Post-Exploitation Framework

Instead of relying on premade and well-known toolkits, the threat actors behind the TrickBot trojan decided to develop a private post-exploitation toolkit called PowerTrick to spread malware laterally ...
Bleeping Computer

Latest Post-Exploitation news

Ransomware gang members increasingly use a new malware called Skitnet ("Bossnet") to perform stealthy post-exploitation activities on breached networks. 18 kits, a 37x spike in detections, and every ...
Infosecurity-magazine.com

Attacker “Patches” Vulnerability Post Exploitation to Lock Out Competition

A threat actor has been observed “patching” a vulnerability post exploitation, likely in a bid to lock out other adversaries and secure exclusive access. The novel tactic was detected by Red Canary ...
Dark Reading

Okta Post-Exploitation Method Exposes User Passwords

A post-exploitation attack method has been uncovered that allows adversaries to read cleartext user passwords for Okta, the identity access and management (IAM) provider — and gain far-ranging access ...
Infosecurity-magazine.com

New Post-Exploitation Attack Method Found Affecting Okta Passwords

A new post-exploitation attack method has been discovered that enables potential attackers to read users’ passwords and credentials in the audit logs of software by enterprise identity solution ...
Dark Reading

Warlock Ransomware Group Augments Post-Exploitation Activities

The Warlock ransomware group continues to exploit unpatched Microsoft SharePoint servers with a new focus on stealthier, more resilient post-exploitation activity, thanks to its use of a new bring ...