Iranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware Attacks

A fresh round of watering hole assaults that are intended to launch a malware known as IMAPLoader has been linked to the Iranian threat actor Tortoiseshell.

In a report published on Wednesday, PwC Threat Intelligence stated that “IMAPLoader is a.NET malware that has the ability to fingerprint victim systems using native Windows utilities and acts as a downloader for further payloads.”

It is conducted through new service deployments and can carry out payloads taken from email attachments. It employs email as a [command-and-control] channel. Operating since at least 2018, Tortoiseshell has a track record of distributing malware through deceitful website breaches read more Iranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware Attacks.

Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *