Navigation section
remote administration tool
About this tag
This tag covers discussions and alerts about remote administration tools (RATs), including malicious variants used by threat actors. A prominent example is FALLCHILL, a RAT associated with North Korean government cyber activity, tracked as HIDDEN COBRA. The content includes technical details from joint DHS and FBI advisories, such as indicators of compromise and affected systems. Topics span network security, threat detection, and mitigation strategies for enterprise IT environments. Users can find information on identifying and defending against unauthorized remote access tools that pose risks to Windows-based networks and systems.
-
TA17-318A: HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL
Original release date: November 14, 2017 Systems Affected Network systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS...- News
- Thread
- command and control cyber threat reporting cybersecurity dhs fallchill fbi hidden cobra incident response indicators of compromise ip address malware mitigation network defense network security north korea remote administration tool system information tls
- Replies: 0
- Forum: Security Alerts