In this intrusion from August 2022, we observed a compromise that was initiated with a Word document containing a malicious VBA macro, which established persistence and communication to a command … Read More
The post Collect, Exfiltrate, Sleep, Repeat appeared first on The DFIR Report.