As expected, this Iranian APT set up a new campaign to target universities around the world when schools and universities went back.
We discovered a new attack that injected its payload—dubbed “Kraken—into the Windows Error Reporting (WER) service as a defense evasion mechanism.
This week on Lock and Code, we talk to Pieter Arntz, malware intelligence researcher for Malwarebytes, about Google Chrome extensions.
We uncovered an active campaign in early July that we attribute to a new Chinese APT group attacking India and Hong Kong with MgBot malware.
A newly discovered APT spear-phishing attack implements several evasion techniques to drop Cobalt Strike toolkit.
The Lazarus group improves their toolset with a new RAT specifically designed for the Mac.
We look at a spear phishing attack from APT36, an Advanced Persistent Threat group posing as the government of India and offering guidance on coronavirus. Instead, users are infected with a Crimson RAT that steals data.