Webworm Attackers Deploy Modified RATs in Espionage Attacks


AI generated Image

This corresponds with recent Webworm activity observed by Symantec.”At the same time, the common use of these types of tools and the exchange of tools between groups in Asia can potentially obscure the traces of distinct threat groups, Symantec explained. The threat actor known as Webworm has been linked to several Windows–based remote access Trojans, suggests a new advisory by Symantec, a subsidiary of Broadcom Software. Symantec said it spotted variants of 9002 RAT that inject into memory and do not write to the disk.

Source read time: 1 min - infosecurity-magazine.com

Also offered in: Nederlands

More news for you