Researchers observed a new Powershell based backdoor via Microsoft office document that infects similar to MuddyWater threat actor hacking tools to steal victims sensitive data and share it via C&C server to the attacker. MuddyWater is a widely known cyber crime group and they active since 2017 and performs various PowerShell script attacks on private and government entities.
Read full news article on GBHackers