New ‘Curly COMrades’ APT Using NGEN COM Hijacking in Georgia, Moldova Attacks
The newly identified threat actor, Curly COMrades, is conducting cyber espionage campaigns against entities in Georgia and Moldova, aiming for long-term access to their networks. Their activities include attempts to extract sensitive data from domain controllers, specifically targeting the NTDS database that holds user authentication information.
Windows
Read Full Original Article →