🚨FBI issues alert over 'OnePercent Group' threat actor 🚨

  • 26 August 2021
  • 0 replies
🚨FBI issues alert over 'OnePercent Group' threat actor 🚨
Userlevel 5
Badge +3
  • Community Manager
  • 24 replies

The FBI has learned of a cyber-criminal group who self identifies as the "OnePercent Group" and who have used Cobalt Strike to perpetuate ransomware attacks against US companies since November 2020. OnePercent Group actors compromise victims through a phishing email in which an attachment is opened by the user. The attachment's macros infect the system with the IcedID1 banking trojan. IcedID downloads additional software to include Cobalt Strike. Cobalt Strike moves laterally in the network, primarily with PowerShell remoting.

0 replies

Be the first to reply!