News APT-32 Found Using New and Undetectable RAT: - Printable Version +- Red Security (https://redsecurity.info/cc) +-- Forum: General (https://redsecurity.info/cc/forumdisplay.php?fid=1) +--- Forum: News (https://redsecurity.info/cc/forumdisplay.php?fid=4) +--- Thread: News APT-32 Found Using New and Undetectable RAT: (/showthread.php?tid=1161)

APT-32 Found Using New and Undetectable RAT: - Mad-Architect - 07-02-2019                    An APT group going by the names: OceanLotus, SeaLotus, and CobaltKitty have bee discovered using a new and undetectable RAT called RatSnif. The new malware is being utilized to leverage network attack capabilities. Four distinct samples of RatSnif were discovered by security researchers from Cylance Threat Research; three of the four samples were found in 2016, and the last one in 2918. They are not all to different and pretty much the same in functionality.          OceanLotus is believed to be Vietnamese based, and mostly operates in Asia, specifically, Cambodia, Laos, Philippines, etc.          This is another example of how well malicious actors can tailor their malware to be undetected, aggressive, and even smart.          Original article can be found here.          That was the news folks, have a good day, and stay safe out there.          ---Mad-Architect