Akira Ransomware Kill Chain Reconstructed from Logs
Source: Socprime
Published:
<p>The article describes a recent intrusion linked to the Akira ransomware operation. The attackers obtained initial access by brute-forcing a disabled local SSL VPN account, then moved on to credential discovery, Kerberoasting, and lateral movement over RDP. Before launching encryption, they cleare