Guarding Against Solorigate TTPs
eSecurity Planet
FEBRUARY 3, 2021
The attacker can then define an admin account, setting the home directory to the root of C: drive. Amending firewall rules to allow sensitive, outgoing protocols. Moving laterally with caution, only when security services could be disabled. Craft more robust malware to target the vendor’s client network.
Let's personalize your content