Cobalt Strike bugs allow takedown of attackers servers.


Denial of service (DoS) vulnerabilities in Cobalt Strike have been uncovered, allowing for the disabling of beacon commandandcontrol (C2) communication channels and new deployments.

Cobalt Strike is a legitimate penetration testing tool that may be used by red teams as an attack framework. Cobalt Strike is also used by threat actors for postexploitation duties after deploying socalled beacons (as seen in ransomware campaigns).

Read More…