Storm-2949

Reports
4
First seen
May 19
Last seen
Jun 2
Motivation
espionage, data-theft, data exfiltration from high-value cloud

Targeting

Sectors
other ×1

Top ATT&CK techniques

T1566 Phishing ×4T1003 OS Credential Dumping ×3T1190 Exploit Public-Facing Application ×2T1526 Cloud Service Discovery ×2T1078 Valid Accounts ×2T1087 Account Discovery ×2T1486 Data Encrypted for Impact ×2T1110 Brute Force ×2T1555 Credentials from Password Stores ×1T1566.001 Phishing: Spearphishing Link ×1T1041 Exfiltration Over C2 Channel ×1T1087.004 Cloud Account ×1

Indicators

cve ×7ip_v4 ×3domain ×2filename ×1

Indicator values are available on Pro and via the API.

Associated CVEs

Recent reports

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.