Novel MoonPeak RAT leveraged by North Korean hackers

22 August 2024

UAT-5394 — which has been suspected to be Kimsuky, its subgroup, or a separate operation leveraging Kimsuky’s toolkit — established updated test virtual machines, payload-hosting sites, and command-and-control servers to support the creation of new MoonPeak RAT variants as part of the attack campaign, according to a Cisco Talos analysis. Researchers also discovered the introduction of more advanced anti-analysis techniques and overall communication mechanism alterations with every succeeding MoonPeak iteration.

Source: SC Magazine

Date:

22 August 2024

Categorie(s):

NEWS

Tag(s):

IT, Malware, North Korean, Novel, RAT

Bloke behind Helix Bitcoin launderette jailed for three years, hands over $400M16 November 2024
Letting chatbots run robots ends as badly as you’d expect16 November 2024
ANZ CIO Challenges: AI, Cybersecurity & Data Analytics for 202515 November 2024
Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit15 November 2024
Drinking water systems for 26M Americans face high cybersecurity risks15 November 2024