l + f: Malware developers cuddle a little too closely with their Trojans

Share your love

l+f:

l+f:

In a recent campaign, cyber criminals in Pakistan are targeting biological and medical facilities, among other things. Security researchers have been on their trail for a long time and, with involuntary help, have now been able to find out about routes of infection and the Trojan called Ragnatela (Italian for spider web).

According to a report from Malwarebytes all the information collected can be traced back to a mishap of those behind the campaign: the malware developers infected their development environment with their own trojan.

The security researchers were able to view screenshots of the desktop and thus document the use of the malware in a virtual machine. The payload is located in an RTF document in an OLE object. This file is sent as an attachment to a fraudulent email. Obviously a criminal was stupid enough to choke on his own bait.


(from)

Article Source

Read Also   Test: GDPR-compliant video conferences in the browser with Sichere-Videokonferenz.de
Share your love