The newly identified malware “Squidoor,” suspected to be created by a Chinese threat actor, is a sophisticated tool targeting sectors such as government, defence, telecommunications, education, and aviation in Southeast Asia and South America. It uses advanced communication methods including API Outlook and DNS tunneling to infiltrate networks, maintain persistence, and extract sensitive data. Squidoor also uses Living-Off-the-Land Binary-and-Script (LOLBAS) techniques and blends malicious traffic with legitimate network activity to avoid detection.
Operation SalmonSlalom: Kaspersky discovered a new attack targeting industrial organizations in APAC – ETCIO
Cybersecurity firm, Kaspersky has discovered a new cyber attack, dubbed ‘Operation SalmonSlalom’, targeting industrial organizations in the Asia-Pacific region.
