New campaign uses malware ‘cluster bomb’ to effect maximum impact

In a newly discovered campaign, an Eastern European threat actor is found using a novel “cluster bomb” approach to package a cascading malware deployment within a single infection.

Dubbed “Unfirling Hemlock,” the actor is dropping up to 10 unique malware files on the same infected system at one go, according to research by Outpost24.

“While reviewing common TTPs in malware campaigns used last year Outpost24’s Cyber Threat Intelligence team, KrakenLabs, came across several reports and articles describing …

actor bomb campaign cluster deployment effect files found impact infection malware novel package single system threat threat actor using