Previously limited to initial access brokering, the Gootloader group has pivoted to a nasty post-compromise “GootBot” attack, each implant with its own C2.
Source: Dark Reading: Cloud
Gootloader Aims Malicious, Custom Bot Army at Enterprise Networks
- Kaiser health insurance leaked patient data to advertisers
- Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover
- Researchers unveil novel attack methods targeting Intel’s conditional branch predictor
- Fake Chrome Updates Hide Android Brokewell Malware Targeting Your Bank
- Watchdog reveals lingering Google Privacy Sandbox worries