Excited to dive into the latest @thedfirreport.bsky.social! π 'The Curious Case of an Egg-cellent Resume' is packed with detailed insights and a goldmine for #ThreatHunting. π΅οΈββοΈ Perfect way to start the week! π Check it out: thedfirreport.com/2024/12/02/t... #infosec
Key Takeaways Initial access was via a resume lure as part of a TA4557/FIN6 campaign. The threat actor abused LOLbins like ie4uinit.exe and msxsl.exe to run the more_eggs malware. Cobalt Strike andβ¦
