Michael Koczwara on Twitter: "Cobalt Strike redirector technique used recently by Russian APT29/Nobellium ⚡️ This is a Red Team technique (T1090.002 External Proxy) https://t.co/31qDR29SPh to hide C2 behind a legit website. This could be very useful for Threat Hunters/Intel to set up a hypothesis/monitor… https://t.co/Uy3MqnCOec" / Twitter
https://twitter.com/i/web/status/1647579199148785664