Hit enter to search

Cobalt Strike bugs allow takedown of attackers servers.

August 4, 2021

Denial of service (DoS) vulnerabilities in Cobalt Strike have been uncovered, allowing for the disabling of beacon commandandcontrol (C2) communication channels and new deployments.

Cobalt Strike is a legitimate penetration testing tool that may be used by red teams as an attack framework. Cobalt Strike is also used by threat actors for postexploitation duties after deploying socalled beacons (as seen in ransomware campaigns).