EU military personnel and political leaders involved in gender equality initiatives are being targeted with an updated version of the RomCom RAT malware, named PEAPOD, by threat actor Void Rabisu. This group is thought to be linked with Cuba ransomware and carries out both financial and espionage attacks. Cybersecurity firm, Trend Micro, detected the usage of RomCom RAT in attacks against Ukraine and its supporters.

Lazarus Hackers Exploiting IIS Servers to Deploy ASP-based Web Shells
The Lazarus group has launched sophisticated attacks on South Korean web servers, deploying ASP-based web shells as first-stage Command and Control (C2) servers. These attacks,