A North Korean hacking group has been found deploying the RokRat Trojan in a new spear-phishing campaign targeting the South Korean government.
Attributing the attack to APT37 (aka Starcruft, Ricochet Chollima, or Reaper), Malwarebytes said it identified a malicious document last December that, when opened, executes a macro in memory to install the aforementioned remote access tool (RAT).
"The
Top News
-
Tenable Acquires Eureka Security To Provide Data Security Across Infrastructure
Tenable® Holdings, Inc., a leading Exposure Management company, has announced a definitive agreement to acquire Eureka Security, Inc., a prominent...
-
SPECTR Malware Targets Ukraine Defense Forces in SickSync Campaign
The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of cyber attacks targeting defense forces in the country with a malware called...
-
FBI thu giữ 7.000 khóa giải mã LockBit, sẵn sàng hỗ trợ nạn nhân ransomware
FBI kêu gọi nạn nhân trong các vụ tấn công mã độc đòi tiền chuộc (ransomware) của LockBit lên tiếng sau khi tiết lộ đã thu hơn 7.000 khóa giải...