all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Cybercriminals Targeting Law Firms with GootLoader and FakeUpdates Malware

Add to bookmarks
March 1, 2023, 2:02 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Six different law firms were targeted in January and February 2023 as part of two disparate threat campaigns distributing GootLoader and FakeUpdates (aka SocGholish) malware strains.
GootLoader, active since late 2020, is a first-stage downloader that's capable of delivering a wide range of secondary payloads such as Cobalt Strike and ransomware.
It notably employs search engine optimization (

campaigns cobalt cobalt strike cybercriminals engine fakeupdates february gootloader january law law firms malware optimization ransomware search search engine socgholish stage strike targeting threat

Visit resource

More from thehackernews.com / The Hacker News

NSA, FBI Alert on N. Korean Hackers Spoofing Emails from Trusted Sources an hour ago | thehackernews.com
advisory agency alert cybersecurity +22
Google Announces Passkeys Adopted by Over 400 Million Accounts 3 hours ago | thehackernews.com
accounts easy fingerprint google +8
Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks 5 hours ago | thehackernews.com
address aruba aruba networks arubaos +34
Popular Android Apps Like Xiaomi, WPS Office Vulnerable to File Overwrite Flaw 20 hours ago | thehackernews.com
android android apps app applications +32
Ukrainian REvil Hacker Sentenced to 13 Years and Ordered to Pay $16 Million 22 hours ago | thehackernews.com
attacks hacker national pay +10
When is One Vulnerability Scanner Not Enough? 1 day ago | thehackernews.com
antivirus antivirus software benefits concept +18
Dropbox Discloses Breach of Digital Signature Service Affecting All Users 1 day ago | thehackernews.com
account breach breached cloud +23
New "Goldoon" Botnet Targets D-Link Routers With Decade-Old Flaw 1 day ago | thehackernews.com
attackers attacks botnet called +18
CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability 1 day, 4 hours ago | thehackernews.com
account account takeover agency catalog +28

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

SITEC- Systems Security Administrator- Camp HM Smith

@ Peraton | Camp H.M. Smith, HI, United States
View on infosec-jobs.com

Cyberspace Intelligence Analyst

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

General Manager, Cybersecurity, Google Public Sector

@ Google | Virginia, USA; United States
View on infosec-jobs.com

Cyber Security Advisor

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Engineering Team Manager – Security Controls

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com
View more jobs