all InfoSec news
Fake Advanced IP Scanner Installer Delivers Dangerous CobaltStrike Backdoor
SpiderLabs Blog from Trustwave www.trustwave.com
During a recent client investigation, Trustwave SpiderLabs found a malicious version of the Advanced IP Scanner installer, which contained a backdoored DLL module. Our client had been searching for the Advanced IP Scanner tool online and inadvertently downloaded the compromised installer from a typo-squatted domain that appeared in their search results.
advanced backdoor client cobaltstrike compromised dll domain fake found installer investigation ip scanner malicious results scanner search tool trustwave trustwave spiderlabs typo version