On June 16, 2022, RiskIQ detected a malicious .zip file hosted on Discord’s Content Delivery Network (CDN). The .zip file dropped an executable which appears to download another payload hosted at a Middle Eastern energy company’s website which was likely compromised in early June 2022. https://community.riskiq.com/article/2ba978c0 DriftingCloud: Zero-Day Sophos Firewall Exploitation and an Insidious Breach […]
Securing SMB IT