On August 10 Proofpoint detected malicious email messages (Figure 1) purporting to contain unreleased Game of Thrones content. Once installed, the 9002 RAT provides attackers with extensive data exfiltration capabilities. Attacks on Asian countries described by Palo Alto.Operation Ephemeral Hydra, a strategic website compromise utilizing an Internet Explorer zero-day, which FireEye attributed to an APT actor without a country attribution.Operation Aurora, an attack on companies such as Google, widely attributed to the Chinese government.Previous attacks involving the 9002 RAT include: The malicious attachment, which offered salacious spoilers and video clips, attempted to install a “9002” remote access Trojan (RAT) historically used by state-sponsored actors. Proofpoint recently observed a targeted email campaign attempting a spearphishing attack using a Game of Thrones lure.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |