Microsoft Describes 'MagicWeb' Attacks Using Active Directory Federation Services -- Redmondmag.com
Tags
country: Russia
maec-delivery-vectors: Watering Hole
attack-pattern: Conditional Access Policies - T1556.009 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID b29eaef1-1ac6-438f-a83e-1078ea0ee813
Fingerprint f5c7f00180e6b9e
Analysis status DONE
Considered CTI value 1
Text language
Published Aug. 25, 2022, midnight
Added to db Sept. 11, 2022, 12:41 p.m.
Last updated Nov. 19, 2024, 8:52 p.m.
Headline UNKNOWN
Title Microsoft Describes 'MagicWeb' Attacks Using Active Directory Federation Services -- Redmondmag.com
Detected Hints/Tags/Attributes 40/3/2
Source URLs
Redirection Url
Details Source https://redmondmag.1105cms01.com/articles/2022/08/25/microsoft-describes-magicweb-attacks-using-active-directory-federation-services.aspx
URL Provider
Details Provider Source level domain
Details 1105cms01.com redmondmag.1105cms01.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 162 https://media.cert.europa.eu/rss?type=category&id=APTFilter&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 17 
redmondmag.com
Details Threat Actor Identifier - APT 669 
APT29