The CloudScout toolset is capable of retrieving data from various cloud services by leveraging stolen web session cookies, seamlessly coupled with MgBot's malware framework.
Evasive Panda, also known as Bronze Highland, employs various access methods, including newly disclosed security flaws, DNS poisoning, and compromises supply chains to attack Taiwan and Hong Kong entities.
The CloudScout modules are designed to hijack authenticated sessions by stealing cookies to access Google Drive, Gmail, and Outlook, demonstrating sophisticated cyber espionage tactics.
CommonUtilities contains custom-implemented libraries that enhance functionality for CloudScout, despite the availability of similar open-source libraries, highlighting a meticulous design approach.
Collection
[
|
...
]