Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Sponsored By
CISA Warns of New RAT Aimed at US Defense ContractorsCISA Warns of New RAT Aimed at US Defense Contractors
Hidden Cobra, an APT group associated with the government of North Korea, is thought to be behind the campaign.
Dark Reading Staff
August 20, 2020
1 Min Read
The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has issued a Malware Analysis Report on BLINDINGCAN, a new remote-access Trojan variant used by North Korean threat actors. According to the report, the FBI has high confidence that Hidden Cobra, an APT group known to be associated with the government of North Korea, is using BLINDINGCAN to establish a presence on networks and exfiltrate data.
CISA says Hidden Cobra targeted government contractors earlier this year in an attempt to gather intelligence surrounding key military and energy technologies. The documents used in the campaign featured job postings from defense contractors as lures and, when opened, installed BLINDINGCAN on the victims' systems.
The report recommends organizations follow best practices regarding malicious email messages to avoid being infected by the malware.
Read more here.
About the Author(s)
You May Also Like
More Insights
Webinars
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication Methods
Oct 26, 2023Modern Supply Chain Security: Integrated, Interconnected, and Context-Driven
Nov 06, 2023How to Combat the Latest Cloud Security Threats
Nov 06, 2023Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and Phishing
Nov 01, 2023SecOps & DevSecOps in the Cloud
Nov 06, 2023
