So the attackers are using credentials they presumably stole in their first attack. Are they really expecting that Saudi Aramco wouldn't change all their passwords? They did change all their passwords right?
So the attackers are using credentials they presumably stole in their first attack. Are they really expecting that Saudi Aramco wouldn't change all their passwords? They did change all their passwords right?