The Register
4 years, 3 months ago
Don't let ransomware crooks spend months on your network – like this govt agency did
Miscreants Googled for post-intrusion tools before downloading them onto servers, PCs Lockbit ransomware operators spent nearly six months in a government agency's network, deleting logs and using Chrome to download hacking tools, before eventually deploying extortionware, according to Sophos threat researchers.…