Operation Fox Kitten
The Fox Kitten Campaign targeted multiple sectors around the world including information technology, oil, gas, telecommunications, defense, government, and aviation. The operation targeted organizations to maintain access routes, steal sensitive information, and use supply-chain attacks to target additional companies. A range of open source and custom tools were used during the campaign including Mimikatz, Procdump, JuicyPotato, STSRCheck, and POWSSHNET. The attackers exploited multiple vulnerabilities in VPN systems to gain initial access the targeted networks.