Divergent” by Cisco Talos Researchers and “Nodersok” by Microsoft utilizes Node.exe – an implementation by Microsoft of NodeJS – along with a legitimate program named WinDivert – a packet capture tool – to make up the malware. According to Microsoft, thousands of computers have been infected, particularly from the USA and Europe.
Read full article on HackRead