eSentire’s cybersecurity experts discovered a complex malware campaign using KoiLoader to execute information-stealing payloads. The campaign exploited a Windows bug and used PowerShell scripts to bypass security, showing increasingly sophisticated tactics by cybercriminals. The malware checks for non-Russian systems and avoids detection by security tools. It then downloads KoiStealer to extract sensitive data. eSentire advises companies to disable wscript.exe and use advanced detection mechanisms to confront such threats.
Rest, AustralianSuper Among Funds Hit By Cyberattack
Australia’s largest superannuation funds, including AustralianSuper, REST, Australian Retirement Trust, and Hostplus, have suffered from a coordinated cyber attack, with around 8,000 accounts breached. Hackers
