The newly discovered Spirals ransomware, written in Rust, utilizes a rapid attack timeline to move from initial breach to full network encryption in less than a day. Attackers gain entry by compromising internet-facing IIS web servers to deploy web shells and establish interactive sessions through the IIS worker process. Once inside, the threat actors escalate privileges by bypassing User Account Control and enabling the Remote Desktop Protocol for persistent access. Source
Les hele artikkelen hos kilden.
Kommentarer (0)
Ingen kommentarer ennå. Bli den første til å kommentere!