Microsoft researchers have discovered an emerging cluster of TTP’s they have named Storm-1167 being used by an unknown threat actor to target banking and financial services institutions.
This threat actor has been utilizing phishing emails for initial compromise, then using compromised inboxes to further distribute their malicious phishing emails.
The threat actor has been observed taking steps to minimize detection and to establish persistence.
You must log in or # to comment.