Adwind Remote Access Trojan Hits Utilities Sector

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,146
Content source
https://www.bleepingcomputer.com/news/security/adwind-remote-access-trojan-hits-utilities-sector/
Attackers are targeting entities from the utility industry with the Adwind Remote Access Trojan (RAT) malware via a malspam campaign that uses URL redirection to malicious payloads.

Adwind (also known as jRAT, AlienSpy, JSocket, and Sockrat) is distributed by its developers to threat actors under a malware-as-a-service (MaaS) model and it is capable of evading detection by most major anti-malware solutions.

While the Adwind Trojan manages to avoid detection by some anti-malware solutions, sandbox- and behavior-based antivirus software should be capable of detecting and block it successfully.

This allows its operators to successfully compromise their targets' computers without raising suspicion, and perform a wide range of malicious tasks from stealing sensitive info like VPN certificates and credentials from Chrome, IE, and Edge to collecting and exfiltrating the victims' keystrokes.
Click to expand...
Read more below:
www.bleepingcomputer.com

Adwind Remote Access Trojan Hits Utilities Sector

Attackers are targeting entities from the utility industry with the Adwind Remote Access Trojan (RAT) malware via a malspam campaign that uses URL redirection to malicious payloads.
www.bleepingcomputer.com www.bleepingcomputer.com
cofense.com

New Phishing Campaign Bypasses Microsoft ATP | Cofense

The Cofense  Phishing Defense CenterTM has observed a new phishing campaign that spoofs a PDF attachment to deliver the notorious Adwind malware. This
cofense.com cofense.com
 
  • Wow
  • Like
Reactions: Gandalf_The_Grey, harlan4096, g4nu5 and 1 other person
You must log in or register to reply here.

Similar threads

silversurfer
    • Like
    • +Reputation
QwixxRAT: New Remote Access Trojan Emerges via Telegram and Discord
Replies
2
Views
1,419
News Archive
Xeno1234
Xeno1234
silversurfer
    • Like
    • +Reputation
MULTI#STORM Campaign Targets India and U.S. with Remote Access Trojans
Replies
0
Views
878
News Archive
silversurfer
silversurfer
MuzzMelbourne
    • Like
    • Wow
Warning: GravityRAT Android Trojan Steals WhatsApp Backups and Deletes Files
Replies
0
Views
805
News Archive
MuzzMelbourne
MuzzMelbourne

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top