The campaign also uses fake job offers and impersonates CEOs on LinkedIn to target victims, according to the Israeli government.
The campaign appeared to be similar to a North Korean government hacking campaign that has recently targeted the Israeli defense sector, a campaign identified by the Israeli Ministry of Defense last week. Some of the documents suggested they were “human resources department” files. As part of their lures, the North Korean hackers at times appeared to use logos and imagery from Boeing in Microsoft Word documents that were compressed into. government calls Hidden Cobra, have been using the malicious software in an effort to collect intelligence surrounding key military and energy technologies, the FBI and CISA said. The hackers, belonging to a group the U.S.
The attacks leverage a remote access trojan (RAT), which the FBI and the CISA call “BLINDINGCAN,” to gain a foothold into networks and then maintain access for further network exploitation, the FBI and CISA said.
MALWARE WEDNESDAY JOURNALY INSTALL
The hackers have been targeting contractors with fake job postings from other defense contracting entities to lure them to click through and install the data-gathering implant on their systems, the FBI and Cybersecurity and Infrastructure Security Agency (CISA) said in a joint Malware Analysis Report (MAR). The FBI and DHS’ cybersecurity agency exposed malware Wednesday that North Korean government hackers have been using this year to target defense contractors in the military and energy sectors.
0 kommentar(er)
