MagicRAT: Lazarus’ latest gateway into victim networksSeptember 7, 2022 08:09
Cisco Talos has discovered a new remote access trojan (RAT) we're calling "MagicRAT," developed and operated by the Lazarus APT group, which the U.S. government believes is a North Korean state-sponsored actor.
Transparent Tribe campaign uses new bespoke malware to target Indian government officialsMarch 29, 2022 08:03
By Asheer Malhotra and Justin Thattil with contributions from Kendall McKay. * Cisco Talos has observed a new Transparent Tribe campaign targeting Indian government and military entities. While the actors are infecting victims with CrimsonRAT, their well-known malware of choice, they are also using new stagers and implants. * This campaign, which
Arid Viper APT targets Palestine with new wave of politically themed phishing attacks, malwareFebruary 2, 2022 08:02
Cisco Talos has observed a new wave of Delphi malware called Micropsia developed and operated by the Arid Viper APT group since 2017. * This campaign targets Palestinian entities and activists using politically themed lures. * The latest iteration of the implant contains multiple RAT and information-gathering capabilities. Executive summary Cisco Talos