In April, researchers Oleg Kolesnikov and Harshvardhan Parashar at Securonix reported other attacks that infected organizations with LockerGoga also tapped Active Directory. “In some incidents, the actors have also been using Active Directory management services to distribute the payload in the network,” they wrote, referencing additional research conducted by Nozomi Networks.

Read More

Share This