New Backdoor WhiskerSpy Spread By Malicious Codec Installer
An advanced threat actor Earth Kitsune is targeting pro-North Korean users visiting specific websites using watering hole attacks. When users attempt to watch the video on the website, they get infected with a malicious script that asks the victim to install a video codec disguised as a legitimate one for the media to run. The main goal of the fake codec is to load WhiskerSpy malware to the infected system. Read more...