Intel Name: Havoc: sharepoint with microsoft graph api turns into fud c2
Date of Scan: March 10, 2025
Impact: Medium
Summary: “Havoc: SharePoint With Microsoft Graph API Turns Into FUD C2” refers to the use of the Havoc command-and-control (C2) framework, which is open-source and available on GitHub, by threat actors to gain full control over a target. By integrating SharePoint with the Microsoft Graph API, Havoc can be leveraged in a “Fully Undetectable” (FUD) manner, helping attackers evade detection and carry out malicious activities, similar to other C2 frameworks like Cobalt Strike and Silver.
