A threat actor known as Curly COMrades is using Linux VMs to remain undetected in Windows environments while conducting Russia-aligned activities.
First seen on darkreading.com
Jump to article: www.darkreading.com/endpoint-security/pro-russian-hackers-linux-vms-hide-windows
