"Pen Testing Tools Increasingly Used by Threat Actors"

A recent report from the Managed Detection and Response (MDR) firm Red Canary brings further attention to the use of legitimate penetration testing tools such as Cobalt Strike, Impacket, and RMM by threat actors. Malicious actors have found it to be more efficient to use existing penetration testing tools that have already been proven effective than to create new tools. According to the report, Cobalt Strike has grown in popularity, impacting 8 percent of its customers in 2021. In addition, as-a-service models, including Phishing-as-a-Service (PhaaS), Access-as-a-Service, and Crypters-as-a-Service, have become increasingly available to threat actors. This article continues to discuss key findings from Red Canary's latest Threat Detection Report regarding threat actors' penetration testing tools, the increased availability of as-a-service models to launch attacks, and other growing cyber threats.  

BetaNews reports "Pen Testing Tools Increasingly Used by Threat Actors"