all InfoSec news
CoralRaider targets victims’ data and social media accounts
April 4, 2024, 1:30 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
- Cisco Talos discovered a new threat actor we’re calling “CoralRaider” that we believe is of Vietnamese origin and financially motivated. CoralRaider has been operating since at least 2023, targeting victims in several Asian and Southeast Asian countries.
- This group focuses on stealing victims’ credentials, financial data, and social media accounts, including business and advertisement accounts.
- They use RotBot, a customized variant of QuasarRAT, and XClient stealer as payloads in the campaign we analyzed.
- The actor uses the dead drop technique, …
accounts actor business calling cisco cisco talos countries credentials data financial financial data media origin social social media stealing talos targeting threat threat actor we believe
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineer - Vulnerability Management
@ Starling Bank | Southampton, England, United Kingdom
Manager Cybersecurity
@ Sia Partners | Rotterdam, Netherlands
Compliance Analyst
@ SiteMinder | Manila
Information System Security Engineer (ISSE)-Level 3, OS&CI Job #447
@ Allen Integrated Solutions | Chantilly, Virginia, United States
Enterprise Cyber Security Analyst – Advisory and Consulting
@ Ford Motor Company | Mexico City, MEX, Mexico