I found this article interesting as it relates to the same penetration testing tools that we are using in class. Although Meterpreter wasn’t the only tool used, it was the tool that allowed hackers to gain access into banks, government organizations, and telecommunication companies system. As we learned, some tools only runs in memory and does not affect storage. Well, hackers having been using tools such as meterpreter to gain access into the victim machines. Once in, the use tools such as Mimikatz to obtain passwords and credentials for other machines, and PowerShell for control.
Article: http://www.databreachtoday.com/kaspersky-banks-governments-telcos-hit-by-fileless-malware-a-9678
BIlaal Williams says
Hi Loi,
Great article, interesting to see criminal organizations using the same tools we are using in class, and also that they maintained there attack using tools that for the most part are Microsoft utilities. I am curious to see if there is a common exploit used by these organizations in Metasploit to exploit the systems.