Josh Lemon · @joshlemon
123 followers · 23 posts · Server infosec.exchange
Really nice write-up from the GroupIB team on an #APT they are calling #DarkPink (aka #SaaiwcGroup) targeting #APAC victims.
The lateral movement technique via WMI Filter/Consumer to USB is interesting.
#apt #darkpink #saaiwcgroup #apac #dfir #threatintel
Last updated 3 years ago