APT Group Patches termsrv.dll to Enable Multiple RDP Sessions
Source: Gbhackers
Published:
<p>A sustained cyber espionage campaign attributed to the Cloud Atlas advanced persistent threat (APT) group has introduced a stealthy technique that modifies the Windows termsrv.dll library to enable multiple Remote Desktop Protocol (RDP) sessions on compromised systems.</p> <p>Observed throughout