Check Point, a cybersecurity firm, has identified a new wave of phishing attacks targeting Israel that is linked to an Iranian nation-state threat actor.
The attack chain begins with an ISO disk image file that drops a custom in-memory downloader which then launches a PowerLess backdoor.
This backdoor is capable of stealing data, taking screenshots, recording audio, and logging keystrokes.
Check Point also discovered two other archive files used as part of a different intrusion set that share overlaps with the first attack.
The threat actor is continuously refining and retooling its malware arsenal to expand their functionality and resist analysis efforts, while also adopting enhanced methods to evade detection.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply