Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Russia-linked Nobelium APT Group Uses Custom Backdoor to Target Windows Domains
Malware and Vulnerabilities
September 28, 2021
Security Affairs
It uses FoggyWeb to remotely exfiltrate the configuration database of compromised AD FS servers, decrypted token-signing certificate, and token-decryption certificate, and execute more components.
Read More
FoggyWeb Backdoor
Nobelium APT group
Windows domains
Publisher
Previous
Bandwidth.com is Latest Victim of DDoS Attacks Against ...
Breaches and Incidents
Next
Cybercrime is hitting communities of color at higher ra ...
Trends, Reports, Analysis