A hacker group, known as UNK_CraftyCamel, has targeted organizations in the UAE, potentially linked to Iran’s Islamic Revolutionary Guard Corps. The hackers used an email account from Indian firm INDIC Electronics to send malware to victims. The malware, dubbed Sosano, installed a backdoor to further infiltrate the systems, with particularly advanced, personalized phishing emails. The hacker group targeted organizations in aviation, transportation, and satellite communications.
Hackers Deliver XWorm via Malicious Registry Files in a New Stegocampaign Attack
A new variant of Stegocampaign has emerged, utilizing a Windows registry file to include a malicious script in Autorun. By exploiting user actions through phishing
