all InfoSec news
GootLoader and FakeUpdates Malware Campaign Targets Law Firms
Heimdal Security Blog heimdalsecurity.com
Two separate threat campaigns targeted six different law firms in January and February 2023, distributing GootLoader and FakeUpdates, also known as SocGholish malware. GootLoader is a first-stage downloader capable of delivering a wide range of secondary payloads such as Cobalt Strike and ransomware and has been active since late 2020. To funnel victims searching for business-related documents […]
The post GootLoader and FakeUpdates Malware Campaign Targets Law Firms appeared first on Heimdal Security Blog.
business campaign campaigns cobalt cobalt strike cybersecurity news documents fakeupdates february for business funnel gootloader january law law firms malware malware campaign ransomware socgholish socgholish malware stage strike threat