H3-2024-0028¶

NodeZero Remote Access Tool Deployed and Executed


Category	`SECURITY_CONTROLS`
Base Score	`7.2`

Description¶

NodeZero deployed and ran a Remote Access Tool on the target by exploiting a vulnerability or using privileged credentials.

Impact¶

Attackers use remote access tools and other types of malicious software to carry out various actions such as stealing data, dumping credentials, and pivoting to other machines in the network.

References¶

MITRE ATT&CK Tactic: Execution