#powershell-backdoor

[ follow ]
Information security
fromThe Hacker News
1 week ago

New COLDRIVER Malware Campaign Joins BO Team and Bearlyfy in Russia-Focused Cyberattacks

COLDRIVER deployed ClickFix-style attacks using BAITSWITCH downloader to deliver SIMPLEFIX PowerShell backdoor, establishing persistence and storing encrypted payloads in the Windows Registry.
[ Load more ]