lokibot

About this tag
LokiBot is a commodity information-stealing malware that has been increasingly used by malicious cyber actors since July 2020, as observed by CISA. This tag covers discussions and alerts related to LokiBot, including technical details from the Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC). Topics include the malware's tactics, techniques, and procedures (TTPs) mapped to the MITRE ATT&CK framework, its impact on Windows systems, and detection or mitigation strategies. The content is relevant for IT security professionals, system administrators, and anyone concerned with Windows-based malware threats and enterprise security.
  1. News

    AA20-266A: LokiBot Malware

    Original release date: September 22, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise frameworks for all referenced threat actor techniques. This product was written by the Cybersecurity and...
Back
Top