Portsuppe

SeeSeeYouExec: Windows Session Hijacking via CcmExec

Mandiant Blog·older·Reputable

Written by: Andrew Oliveau Over the last several years, the security community has witnessed an uptick in System Center Configuration Manager (SCCM)-related attacks. From extracting network access account (NAA) credentials to deploying malicious applications to targeted devices, SCCM attacks have aided in accomplishing complex objectives and evading existing detections. Mandiant's Red Team has utilized SCCM technology to perform novel attacks against mature clients where conventional methodology

Categories cybersecurity · government-security · unknown-it-category-15
Original source / advisory
Published
3/28/2024, 1:00:00 PM
Fetched
6/7/2026, 6:19:33 AM
Trust
reputable · 80/100
Language
en