Researchers at security company ESET uncover Crutch, a new malware backdoor. The newly detailed Crutch campaign appears tailored towards particular targets, suggesting a ministry of foreign affairs in an EU country.
This malware is built to steal sensitive documents and other files by secretly copying them from Dropbox accounts controlled by the attackers. This malware campaign has been active from 2015 through to 2020 and researchers have linked it to the Turla hacking group due to similarities with previously uncovered campaigns. The backdoor has repeatedly been updated and changed over the years in order to maintain effectiveness while also keeping it hidden. The attackers were able to move laterally and compromise additional machines by reusing admin passwords.
Check the source.
- Explosive Phishing Attack Targets Financial CompaniesResearchers warn about a new phishing attack targetting employees in financial services, using a poisoned Excel file. This Phishing […]
- BEC Scams: New Unit 42 Report Reveals Concerning FiguresPalo Alto’s Unit 42 just dropped a new report on BEC scams – business email compromise is one of […]
- This Phishing Scam Is After Your Microsoft 365 Account PasswordsA newly discovered phishing scam called TodayZoo sends out URLs to spoofed Microsoft 365 login pages. The Phishing Scam […]
- Massive Account-Stealing Phishing Scam Targeting YouTube CreatorsGoogle discovered an extensive cookie-swiping phishing scam targeting YouTube content providers and stealing accounts. A new report from the […]
- $5.2B In Bitcoin Ransomware Transactions Paid in First Half of ’21, New Report RevealsA new report shows that organizations paid a staggering $5.2B in Bitcoin in 2021 H1 to cybercriminals. Additionally, ransomware […]