adversary in the middle featured MFA MFA phishing Qilin RMM ScreenConnect Security Operations supply chain compromise Threat Research

Qilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstream

on April 1, 2025

gallagherseanm

Attack matches three-year long pattern of ScreenConnect attacks tracked by Sophos MDR as STAC4365.

You May Also Like

ClickFix

I am not a robot: ClickFix used to deploy StealC and Qilin

December 18, 2025

Mindi McDowell

ATT&CK

Game of clones: Sophos and the MITRE ATT&CK Enterprise 2025 Evaluations

December 15, 2025

Matt Wixey

More From Author

AI

Using AI to identify cybercrime masterminds

June 30, 2025

gallagherseanm

DragonForce

DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers

May 27, 2025

gallagherseanm

3am ransomware

A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist

May 20, 2025

gallagherseanm

Leave a Reply Cancel reply

You must be logged in to post a comment.