APT Group Patches termsrv.dll to Enable Multiple RDP Sessions
Source: Gbhackers
Published:
<p>A sustained cyber espionage campaign attributed to the Cloud Atlas advanced persistent threat (APT) group has introduced a stealthy technique that modifies the Windows termsrv.dll library to enable multiple Remote Desktop Protocol (RDP) sessions on compromised systems. Observed throughout 2025 an