Albania

How a Plaintext File On Users’ Desktops Exposed Secrets Leads to Akira Ransomware Attacks  A threat actor who gained initial access through a SonicWall VPN device was able to escalate their attack by finding Huntress recovery codes saved in a plaintext file on a user’s desktop. This allowed the attacker to log into the client’s security portal, where they attempted to remediate incident reports and uninstall security agents to cover their tracks. This incident is…