Attacker Tactics, Techniques and Procedures (TTPs)
Mandiant uncovered and publicly disclosed a widespread campaign conducted by the threat group it tracks as UNC2452. Recently, Mandiant merged UNC2452 into APT29. APT29 and other threat actors have used several methodologies to move laterally from on-premises networks to the cloud, specifically Microsoft 365.
Download this whitepaper to learn techniques used by APT29, and how to proactively harden and remediate environments where similar techniques have been observed.
Offered Free by: Mandiant
See All Resources from: Mandiant