Discover and read the best of Twitter Threads about #astaroth

Most recents (2)

If the recent surge in #Astaroth activity that Microsoft Defender ATP has detected is any indication, attackers are not ready to slow down during the holidays. Astaroth is an info-stealing backdoor that runs directly in memory using living-off-the-land techniques. Image
The new Astaroth campaign uses malicious emails with links to a ZIP archive containing LNK or a script file that bootstraps the attack. Revisit our in-depth analysis of this threat’s behavior in this blog: microsoft.com/security/blog/…
Microsoft Threat Protection does not take a break in protecting customers. Office 365 ATP blocks emails used in this fresh campaign. Behavioral blocking and containment capabilities in Microsoft Defender ATP blocks Astaroth’s activities on endpoints.
Read 3 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!