Storm-2949
Reports
4
First seen
May 19
Last seen
Jun 2
Motivation
espionage, data-theft, data exfiltration from high-value cloud
Targeting
Sectors
other ×1
Top ATT&CK techniques
T1566 Phishing ×4T1003 OS Credential Dumping ×3T1190 Exploit Public-Facing Application ×2T1526 Cloud Service Discovery ×2T1078 Valid Accounts ×2T1087 Account Discovery ×2T1486 Data Encrypted for Impact ×2T1110 Brute Force ×2T1555 Credentials from Password Stores ×1T1566.001 Phishing: Spearphishing Link ×1T1041 Exfiltration Over C2 Channel ×1T1087.004 Cloud Account ×1
Indicators
cve ×7ip_v4 ×3domain ×2filename ×1
Indicator values are available on Pro and via the API.
Associated CVEs
Recent reports
High