athaliaoriginals[.]com

DarkSide command-and-control domain documented in Mandiant's May 11, 2021 report on the DARKSIDE ransomware-as-a-service operation, contemporaneous with the Colonial Pipeline incident addressed in joint CISA/FBI advisory AA21-131A.

family

DarkSide

first seen

May 10, 2021

publisher

Mandiant