top of page
Search
Writer's pictureStormsec

LV Ransomware Exploits ProxyShell in Attack on a Jordan-based Company

TrendMicro's blog entry provides a look at an attack involving the LV ransomware on a Jordan-based company from an intrusion analysis standpoint




ADVERSARY: LV


TARGETED COUNTRY: Jordan


ATT&CK IDS: T1190 - Exploit Public-Facing Application, T1471 - Data Encrypted for Impact, T1572 - Protocol Tunneling, T1059 - Command and Scripting Interpreter, T1003 - OS Credential Dumping


Read More:

3 views

Comments


Commenting has been turned off.
bottom of page