Check your windows web servers under IIS HttpModules , there could be a hidden backdoor installed there.
https://researchcenter.paloaltonetworks.com/2018/01/unit42-oilrig-uses-rgdoor-iis-backdoor-targets-middle-east/?utm_content=buffer1f7f7&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer
No comments:
Post a Comment