Back

LucidRook Malware Campaign Targets Taiwanese Organizations via Fake Security Tools

Severity: High (Score: 65.0)

Sources: Gbhackers, Cybersecuritynews

Summary

A new malware family named LucidRook has been identified in cyberattacks targeting organizations in Taiwan, particularly NGOs and universities. The attackers are using fake security tools disguised as legitimate software to deploy the malware, employing sophisticated spear-phishing techniques. The campaign, tracked as UAT-10362, indicates a high level of planning and stealth. Victims are tricked into executing the malware, believing they are installing a trusted security product. The operation highlights a significant threat to the cybersecurity landscape in Taiwan. Currently, there are no specific CVEs or patches available for this malware. The full scope of the impact is still being assessed as investigations continue. Key Points: • LucidRook malware is being delivered through fake security software in Taiwan. • The campaign targets NGOs and universities, indicating a focused attack strategy. • Attackers employ sophisticated phishing techniques to deceive victims.

Key Entities

  • Malware (attack_type)
  • Phishing (attack_type)
  • Uat-10362 (campaign)
  • Taiwan (country)
  • LucidRook (malware)
  • T1036 - Masquerading (mitre_attack)
  • T1204 - User Execution (mitre_attack)
  • T1566 - Phishing (mitre_attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed