[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fWvKZtPLuhx2_zPEIgCZh2dh669uRTpoGEpgt3z6KSYo":3},{"article":4,"iocs":41},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":21,"category":22,"article_tags":25},"da819620-caee-4aa8-b34e-a44921c8a93c","Global Stock Exchange Hit by Monthslong Email Campaign","global-stock-exchange-hit-by-monthslong-email-campaign-fe78c1","A threat actor got a near-continuous view into an influential finance executive's email inbox, thanks to clever use of legitimate, native Windows tools.","A threat actor conducted a monthslong email compromise campaign targeting a senior finance executive at a global stock exchange using legitimate Windows tools to maintain persistent access. The attacker exploited native system capabilities to avoid detection while monitoring the executive's email communications.","Threat actor gained prolonged email inbox access to finance exec via native Windows tools.",null,"https:\u002F\u002Fwww.darkreading.com\u002Fcyberattacks-data-breaches\u002Fglobal-stock-exchange-hit-monthslong-email-campaign","https:\u002F\u002Feu-images.contentstack.com\u002Fv3\u002Fassets\u002Fblt6d90778a997de1cd\u002Fblt5908b752b625e143\u002F6a1ef59f4a4fc7dbba150b40\u002FStocks_down-nagelestock.net-Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale","2026-06-03T10:01:00+00:00","2026-06-03T10:00:24.66033+00:00",7,[18],{"name":19,"type":20},"Windows native tools","technology","2e06f76c-d5b9-4f54-9eef-4d3447b10730",{"id":21,"icon":11,"name":23,"slug":24},"Breaches","breaches",[26,31,36],{"category":27},{"id":28,"icon":11,"name":29,"slug":30},"2c8f44d4-b56e-47cf-9677-04f22c9ee78d","Identity & Access","identity-access",{"category":32},{"id":33,"icon":11,"name":34,"slug":35},"c5eccf7c-abbc-4bd3-bbed-e6da5cba8e73","Incident Response","incident-response",{"category":37},{"id":38,"icon":11,"name":39,"slug":40},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[]]