New malware reports device location
A new malware strain that gives the location of an infected device has been identified.
The Hacker News explains that the malware has one operation: ‘Every minute it triangulates the infected systems’ positions by scanning nearby Wi-Fi Access points as a data point for Google’s geolocation API.’ Cyber experts aren’t yet clear ‘who or what’ is interested in the location of an infected device or the motives behind why this specific form of malware was produced.
Lazarus arises with new strategy
North Korean hacker group Lazarus has been exploiting a critical vulnerability in ManageEngine ServiceDesk to attack an internet infrastructure provider and healthcare organizations. The new malware called CollectionRAT appears to be related to the EarlyRAT family.
