"Ande Loader Malware Targets Manufacturing Sector in North America"

A threat actor called "Blind Eagle," also known as APT-C-36, has been observed using a loader malware named "Ande Loader" to deliver Remote Access Trojans (RATs) such as Remcos RAT and NjRAT. According to eSentire, the attacks, launched through phishing emails, targeted Spanish-speaking users in the North American manufacturing industry. Blind Eagle is a financially motivated threat actor who has previously executed cyberattacks against entities in Colombia and Ecuador to deliver AsyncRAT, BitRAT, Lime RAT, NjRAT, Remcos RAT, and more. The threat actor's targeting footprint has expanded, and phishing emails with RAR and BZ2 archives are being used to activate the infection chain. This article continues to discuss Blind Eagle's use of Ande Loader.

THN reports "Ande Loader Malware Targets Manufacturing Sector in North America" 

Submitted by grigby1