Chinese Hackers Using SugarGh0st RAT to Target South Korea and Uzbekistan | allinfosecnews.com

Dec. 1, 2023, 10:49 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

A suspected Chinese-speaking threat actor has been attributed to a malicious campaign that targets the Uzbekistan Ministry of Foreign Affairs and South Korean users with a remote access trojan called SugarGh0st RAT.
The activity, which commenced no later than August 2023, leverages two different infection sequences to deliver the malware, which is a customized variant of Gh0st RAT&nbsp

access actor august called campaign chinese chinese hackers hackers infection korea malicious rat remote access remote access trojan south south korea speaking target threat threat actor trojan uzbekistan

More from thehackernews.com / The Hacker News

Latrodectus Malware Loader Emerges as IcedID's Successor in Phishing Campaigns 3 hours ago | thehackernews.com

campaigns cybersecurity email email phishing +14

Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam 23 hours ago | thehackernews.com

april arrested atlanta charged +15

Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide 1 day, 1 hour ago | thehackernews.com

as-a-service attacks banking banking trojan +28

Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking 2 days, 15 hours ago | thehackernews.com

actor aqua arsenal botnet +16

New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs 2 days, 21 hours ago | thehackernews.com

cves cyber exposure exposure management +16

China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT 2 days, 21 hours ago | thehackernews.com

access advancements asia blacktech +23

Kimsuky APT Deploying Linux Backdoor Gomir in South Korean Cyber Attacks 3 days ago | thehackernews.com

advanced advanced persistent threat apt attacks +20

CISA Warns of Actively Exploited D-Link Router Vulnerabilities - Patch Now 3 days, 2 hours ago | thehackernews.com

actively exploited agency catalog cisa +27

New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks 3 days, 17 hours ago | thehackernews.com

attack attacks clients cve +19

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Security Operations Vice President - Content Developer

@ JPMorgan Chase & Co. | Jersey City, NJ, United States

View on infosec-jobs.com

Computer and Forensics Investigator

@ ManTech | 221BQ - Cstmr Site,Springfield,VA

View on infosec-jobs.com

Senior Security Analyst

@ Oracle | United States

View on infosec-jobs.com