Feds Warn Healthcare Over Cobalt Strike Infections
Red-Teaming Tool Poses Ongoing Risks When Used by Hackers, HHS Warns
… Detection should lead to quick action, says Keith Fricke, principal consultant at privacy and security consultancy tw-Security.
Cobalt Strike and other red-teaming tools are ”’legitimate’ in the sense that they can be used by red teamers, but are offensive security tools,” he says.
Should defenders spot them, “they should be very concerned as they are not used for legitimate business purposes outside of security testing.”