Behind the Great Wall: Void Arachne Targets Chinese-Speaking Users With the Winos 4.0 C&C Framework
Trend Micro Simply Security
2024-06-19 08:00:00
收藏
We recently discovered a new threat actor group that we dubbed Void Arachne. This group targets Chinese-speaking users with malicious Windows Installer (MSI) files in a recent campaign. These MSI files contain legitimate software installer files for AI software and other popular software but are bundled with malicious Winos payloads.
目录
最新
- Analyzing TeamPCP’s Supply Chain Attacks: Checkmarx KICS and elementary-data in CI/CD Credential Theft
- Vibe Hacking: Two AI-Augmented Campaigns Target Government and Financial Sectors in Latin America
- What Is the Instructure Canvas Breach? Impact, Risks, and What Institutions Should Do
- Supporting the National Cyber Strategy: How TrendAI™ Helps
- InstallFix and Claude Code: How Fake Install Pages Lead to Real Compromise
- Quasar Linux (QLNX) – A Silent Foothold in the Supply Chain: Inside a Full-Featured Linux RAT With Rootkit, PAM Backdoor, Credential Harvesting Capabilities
- Inside Shadow-Earth-053: A China-Aligned Cyberespionage Campaign Against Government and Defense Sectors in Asia
- Kuse Web App Abused to Host Phishing Document