Unknown Actor Using CLFS Log Files for Stealth
released on 2021-09-02 @ 11:17:49 AM
The Mandiant Advanced Practices team reports on a new threat, called PRIVATELOG, that leverages the Common Log File System (CLFS) framework in Windows to hide information.