Looks the baddies are at it again. According to Cisco Talos, AMP should detect the activity associated with this threat, so that is some good news for us MX users with the Advanced Security Licensing!
What do you guys think about this one?
Talos Blog
Found this helpful? Give me some Kudos! (click on the little up-arrow below) and If my reply solved your issue, please mark it as a solution 🙂