Cobalt Strike takedown effort cuts cracked versions by 80%

Fortra, Microsoft and Health-ISAC partnership reduced unauthorized copies of red team tool over the last two years.

Fortra’s Cobalt Strike has been a widely used weapon for a variety of cybercriminals and nation-state threat actors, who frequently use cracked copies of the red teaming tool to establish command-and-control communications and persistent access inside victim environments.

Fortra, Microsoft’s Digital Crimes Unit (DCU), and Health Information Sharing and Analysis Center (Health-ISAC) formed a partnership two years ago to reduce malicious activity stemming from Cobalt Strike. Those efforts have cut the number of unauthorized copies in the wild by 80%, Fortra said in a blog post last Friday.

Read the article in Cybersecurity Dive. Click Here

• Related Resources & News
• New Cybersecurity Policies Could Protect Patient Health Data
• CyberWire Podcast: PHP flaw sparks global attack wave
• Health-ISAC Hacking Healthcare 3-14-2025
• HSCC Aiming to Identify Healthcare Workflow Chokepoints
• New Healthcare Security Benchmark Highlights Key Investment Priorities and Risks
• Are Efforts to Help Secure Rural Hospitals Doing Any Good?
• CISA cuts $10 million annually from ISAC funding for states amid wider cyber cuts
• 2024 Health-ISAC Discussion Based Exercise Series After-Action Report
• Denise Anderson recognized on Cyber25 Women of Impact list
• The ISAC Advantage for Collective Threat Intelligence