Not Simon the Goat on Nostr: Kaspersky: CloudSorcerer – A new APT targeting Russian government entities ...
Kaspersky: CloudSorcerer – A new APT targeting Russian government entities
Kaspersky writes a somewhat confusing article referring to CloudSorcerer as both malware and an Advanced Persistent Threat (APT). Keeping that in mind, CloudSorcerer performs stealth monitoring, data collection, and exfiltration via Microsoft Graph, Yandex Cloud, and Dropbox cloud infrastructure. It also uses GitHub as its initial C2 server. IOC provided.
#threatintel #CloudSorcerer #cyberespionage #IOC
Kaspersky writes a somewhat confusing article referring to CloudSorcerer as both malware and an Advanced Persistent Threat (APT). Keeping that in mind, CloudSorcerer performs stealth monitoring, data collection, and exfiltration via Microsoft Graph, Yandex Cloud, and Dropbox cloud infrastructure. It also uses GitHub as its initial C2 server. IOC provided.
#threatintel #CloudSorcerer #cyberespionage #IOC