- What: Rapid7 published a deep dive into the Chrysalis Backdoor, a tool used by the Lotus Blossom threat actor.
- Impact: The report details the toolkit's capabilities and provides insights into the threat actor's operations.
2026-02-02 (Back to Inventory) The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit Author(s): Ivan Feigl Organization: Rapid7 win.chrysalis Open article directly Open article on Archive.org Related Articles 2025-12-15 ⋅ Rapid7 ⋅ Milan Spinka SantaStealer is Coming to Town: A New, Ambitious Infostealer Advertised on Underground Forums SantaStealer 2025-10-07 ⋅ Rapid7 ⋅ Jakub Zvarik Crimson Collective: A New Threat Group Observed Operating in the Cloud 2025-07-03 ⋅ Rapid7 ⋅ Rapid7 Scattered Spider: Rapid7 Insights, Observations, and Recommendations MimiKatz POORTRY