Microsoft security researchers have discovered a post-compromise capability we’re calling MagicWeb, which is used by a threat actor we track as NOBELIUM to maintain persistent access to compromised environments.
Platform-abuse phishing is on the rise. We analyze how attackers use services such as website builders to host phishing pages.
