216.73.217.80

Threat Actors' Systems Can Also Be Exposed and Used by Other Threat Actors

· Published 06/06/2024 07:22 · Modified 06/06/2024 08:06

Export JSON

Essential information

Published
06/06/2024 07:22
Modified
06/06/2024 08:06
Tags
2024-06-06 backdoor.oldrea botnet coinminer havex phobos proxy ransomware rdp
Related entities
34 observables, 11 techniques (mitre), 5 malware

Description

This report discusses a case where a threat actor's server, used to access an infected , became the target of a threat actor's Remote Desktop Protocol () scan attack. The threat actor successfully breached the server and distributed to the 's . The report analyzes the sequence of events and explores the possibility of the attack being intentional or accidental.

External references