HIDDEN COBRA STRIKES AGAIN WITH CUSTOM RAT, SMB MALWARE

The feds are warning that the North Korean APT group known as Hidden Cobra is mounting active attacks on U.S. businesses (and others globally), including organizations in the media, aerospace, financial and critical infrastructure sectors. According to a United States Computer Emergency Readiness Team (US-CERT) bulletin released Tuesday, the state-sponsored group is using two families of malware against U.S. assets: A remote access tool (RAT) dubbed Joanap; and a Server Message Block (SMB) worm known as Brambul. https://threatpost.com/hidden-cobra-strikes-again-with-custom-rat-smb-malware/132375/

Leave a Reply

Your email address will not be published. Required fields are marked *