Molerats cyberespionage group abuses Google and Facebook services in phishing campaign

Molerats hacking group was noticed to use the fresh version of the SharpStage malware, relying on Dropbox, Google Drive, and Facebook for control and communication to store the stolen data. The other malware used in the campaign are DropBook backdoor and MoleNet malware downloader. The attack was targeting political figures and government officials, attempting to make them download malicious documents, disguised as PDF file referencing the recent talks between Israeli Prime Minister Benjamin Netanyahu and His Royal Highness Mohammed bin Salman, Saudi Crown Prince. The backdoor was controlled through commands from Facebook posts. Read more...