A possible Chinese-speaking actor using under the name DragonSpark is targeting businesses in East Asia while using unusual methods to get past security measures.
According to SentinelOne’s investigation, which was released today, “the attacks are characterized by the usage of the little-known open-source SparkRAT and malware that tries to elude detection through Golang source code interpretation.”
The persistent usage of SparkRAT in the incursions to carry out various tasks, such as information theft, taking over an infected host, or executing further PowerShell commands, is a startling feature.
Although the threat actor’s ultimate objectives are still unknown, espionage or cybercrime read the complete article Chinese Hackers Utilize Golang Malware in DragonSpark Attacks to Evade Detection.
You can stay up to date on the most recent cybersecurity news and trends as well as learn about the newest security services and products for protecting your business and yourself at Reconbee.com.