Advertisement
Top
image credit: Adobe Stock

New SuperBear Trojan Emerges in Targeted Phishing Attack on South Korean Activists

September 1, 2023

Via: The Hacker News
Category:

A new phishing attack likely targeting civil society groups in South Korea has led to the discovery of a novel remote access trojan called SuperBear.

The intrusion singled out an unnamed activist, who was contacted in late August 2023 and received a malicious LNK file from an address impersonating a member of the organization, non-profit entity Interlabs said in a new report.

The LNK file, upon execution, launches a PowerShell command to execute a Visual Basic script that, in turn, fetches the next-stage payloads from a legitimate but compromised WordPress website.

Read More on The Hacker News

RELATED PUBLICATIONS

New Linux variant of BIFROSE RAT uses deceptive domain strategies
Anatsa Android banking Trojan expands to Slovakia, Slovenia, and Czechia
Philippines, South Korea, Interpol cuff 3,500 suspected cyber scammers, seize $300M

Latest Publications

Sweden’s liquor supply severely impacted by ransomware attack on logistics company
Autodesk Drive Abused in Phishing Attacks 
Google fixed critical Chrome vulnerability CVE-2024-4058
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!