Rapid7 Labs has discovered a highly evasive malware installer called CleverSoar, which targets Chinese and Vietnamese-speaking users by deploying and protecting several malicious elements including the Winos4.0 framework and the Nidhogg rootkit. The malware is distributed through a .msi installer package which is structured to terminate if a user’s language settings are not in Chinese or Vietnamese.
CrowdStrike unveils Threat AI to automate threat intelligence – IT Brief Asia
CrowdStrike unveils Threat AI to automate threat intelligence IT Brief Asia
