Brazil subjected to novel CHAVECLOAK trojan attacks

12 March 2024

Attackers leveraged phishing emails using contract-themed DocuSign lures that included PDF attachments, which when opened fetches an installer file that eventually triggers the loading of the CHAVECLOAK malware, a report from Fortinet FortiGuard Labs revealed. After determining whether targeted machines are based in Brazil, CHAVECLOAK proceeds to create a command-and-control server connection and commences various activities that would enable the exfiltration of users’ credentials and other sensitive information, as well as the tracking of their traditional banking and cryptocurrency accounts.

Source: SC Magazine

Date:

12 March 2024

Categorie(s):

NEWS

Tag(s):

Brazil, Identity, IT, News

Elastic VP Chris Townsend Says Data Transformation Critical to Improved Government Services29 April 2024
Study Reveals Alarming Levels of USPS Phishing Traffic29 April 2024
Experts weigh in on the MITRE nation-state cyberattack29 April 2024
New DHS AI safety, security board introduced29 April 2024
Web traffic of fake USPS sites similar to legitimate site29 April 2024