Researchers at security company ESET uncover Crutch, a new malware backdoor. The newly detailed Crutch campaign appears tailored towards particular targets, suggesting a ministry of foreign affairs in an EU country.
This malware is built to steal sensitive documents and other files by secretly copying them from Dropbox accounts controlled by the attackers. This malware campaign has been active from 2015 through to 2020 and researchers have linked it to the Turla hacking group due to similarities with previously uncovered campaigns. The backdoor has repeatedly been updated and changed over the years in order to maintain effectiveness while also keeping it hidden. The attackers were able to move laterally and compromise additional machines by reusing admin passwords.
Check the source.
- Users of popular crypto app Maiar are targetted by SMiShingMaiar is a digital crypto wallet and global payments app that allows users to exchange and securely store money […]
- PHOBOS Ransomware Attack Hits Romanian Hospital on July 22A ransomware attack targeted Witting Clinical Hospital in Bucharest. Hackers took control of the healthcare provider’s servers, encrypted the […]
- 740 Ransomware Victims Listed On Data Leak Sites in Q2 2021, New Report ShowsA new report from Digital Shadow highlights the worrying information that the number of ransomware victims named on data […]
- Kaseya Gets Universal Decryptor for REvil RansomwareThe decryptor vendor will work closely with customers affected by this July’s outbreak of ransomware attacks to help recover […]
- Possibly the Highest Ransomware Payment Ever: CNA reportedly paid $40 million to hackersOne of the biggest US insurance companies, CNA, paid a ransom worth $40 million to attackers after a massive […]