THREAT OPS › Threat News › Threat hunting case study: Detecting IAB activity
Threat hunting case study: Detecting IAB activity
Initial access brokers sell information about or access to compromised computers. Here's how to threat hunt for a known attack behavior involving PowerShell that's used by a prolific initial access broker.
MITRE ATT&CK techniques
- PowerShellT1059.001