Sophisticated malware identified by cybersecurity researchers utilises JScript for its multi-stage attack chain, delivering different malware (either XWorm or Rhadamanthys) depending on the victim’s geographic location. This geolocation-based payload delivery is considered an evolution in targeted malware distribution. The techniques used allow attackers to bypass traditional security systems, with the malware also implementing thorough anti-forensic measures to evade detection.
Microsoft Warns of Ransomware Exploiting Cloud Environments with New Techniques
Microsoft warns of sophisticated ransomware attacks in Q1 2025, targeting hybrid cloud environments through vulnerabilities in on-premises and cloud services. Notably, North Korean group Moonstone
