all InfoSec news
Lazarus Group's infrastructure reuse leads to discovery of new malware
Aug. 24, 2023, 12:35 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
- In the Lazarus Group’s latest campaign, which we detailed in a recent blog, the North Korean state-sponsored actor is exploiting CVE-2022-47966, a ManageEngine ServiceDesk vulnerability to deploy multiple threats. In addition to their “QuiteRAT” malware, which we covered in the blog, we also discovered Lazarus Group using a new threat called “CollectionRAT.”
- CollectionRAT has standard remote access trojan (RAT) capabilities, including the ability to run arbitrary commands on an infected system. Based on our analysis, CollectionRAT appears to …
actor addition blog campaign cve cve-2022-47966 deploy discovery exploiting infrastructure latest lazarus lazarus group malware manageengine north north korean reuse sponsored state threat threats vulnerability
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Malware Analysis — Bumblebee
41 minutes ago |
malware.news
Dark Web Profile: APT31
57 minutes ago |
malware.news
Jobs in InfoSec / Cybersecurity
Security Engineer
@ SNC-Lavalin | GB.Bristol.The Hub
Application Security Engineer
@ Virtru | Remote
SC2024-003563 Firewall Coordinator (NS) - TUE 21 May
@ EMW, Inc. | Mons, Wallonia, Belgium
Senior Application Security Engineer
@ Fortis Games | Remote - Canada
DevSecOps Manager
@ Philips | Bengaluru – Embassy Business Hub
Information System Security Manager (ISSM)
@ ARA | Raleigh, North Carolina, United States