ScarCruft updates its toolset – Week in security with Tony Anscombe

by admin 0 Comments

Cyber Security
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

Deployed against carefully selected targets, the new backdoor combs through the drives of compromised systems for files of interest before exfiltrating them to Google Drive

This week, ESET researchers published their analysis of a previously undocumented backdoor that the ScarCruft APT group has used against carefully selected targets. ScarCruft is an espionage group that has been operating since at least 2012 and mainly takes aim at South Korea.

The group’s new backdoor, which ESET named Dolphin, has a wide range of spying capabilities as it can monitor drives and portable devices, exfiltrate files, log keystrokes, take screenshots, and steal credentials from web browsers.

Watch the video to learn more about the group’s new spying tool and campaigns.

Full technical details are available here: Who’s swimming in South Korean waters? Meet ScarCruft’s Dolphin

This article was originally published by Welivesecurity.com. Read the original article here.
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

Products You May Like

Articles You May Like

SparkCat Malware Uses OCR to Extract Crypto Wallet Recovery Phrases from Images
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [10 February]
Malicious ML Models on Hugging Face Leverage Broken Pickle Format to Evade Detection
BadIIS Malware Exploits IIS Servers for SEO Fraud
Europol Cracks Down on Global Child Abuse Network “The Com”

Leave a Reply

Your email address will not be published. Required fields are marked *