Anomali Cyber Watch Robot Malware Suite Glassworm Vidar Stealer 2 0
Source: www.anomali.com
Published:
<p>COLDRIVER, a Russia-linked threat actor, has replaced its publicly exposed LOSTKEYS tooling with a compact suite dubbed NOROBOT, YESROBOT, and MAYBEROBOT. The campaign uses fake CAPTCHA pages to trick targets into executing a disguised DLL that deploys lightweight PowerShell or Python implants. C