The Silent Credential Heist
ID: 639f9289-81c7-5e68-ae69-b87d65a6f3ea
STIX ID: report--639f9289-81c7-5e68-ae69-b87d65a6f3ea
Feed Name: Halcyon Blog
Threat Score
**Halcyon detected and contained an Akira ransomware intrusion that performed a volumetric LSASS memory dump and staged credential theft and remote access (Cloudflared tunnel, ScreenConnect), preventing lateral movement and ransomware deployment.**
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.