Topic: dfir tool abuse

Sort by: Relevance | Date
  • Active Attacks Target Unpatched SolarWinds WHD Systems
    February 11, 2026
    88%

    Active Attacks Target Unpatched SolarWinds WHD Systems

    Attackers are exploiting unpatched SolarWinds Web Help Desk systems to gain network access, using "living-off-the-land" techniques like legitimate remote access tools to avoid detection. Once inside, they deploy a weaponized version of the Velociraptor forensics tool for command-and-control, enab...

    Read More »

Related Topics

data exfiltration (1) patch management (1) threat hunting (1) incident response (1) persistence mechanisms (1) initial access (1) remote access tools (1) command and control (1)