An Attacker Accesses a Microsoft VM by Using the Azure Serial Console
Highlights:
Since May 2022, Mandiant has kept tabs on the financially motivated threat group UNC3944.
UNC3944 uses PowerShell to deploy commercially available remote administration tools in or...