Zscaler ThreatLabz has discovered the Steal-It cyber attack campaign, believed to be the work of APT28 (Fancy Bear), which targets compromised Windows systems in Australia, Poland, and Belgium, utilizing a customized version of Nishang’s Start-CaptureServer PowerShell script to steal NTLMv2 hashes.
View full story…
Zscaler ThreatLabz Uncovers Steal-It Cyber Attack Campaign Targeting Compromised Windows Systems in Australia, Poland, and Belgium
