"Attackers Are Targeting Financial Departments With SmokeLoader Malware"

The "SmokeLoader" malware has been used in a series of phishing campaigns by financially motivated hackers, primarily against the Ukrainian government and administration organizations. The Ukrainian SSSCIP State Cyber Protection Center (SCPC), in collaboration with Palo Alto Networks' Unit 42, has been tracking phishing campaigns linked to the distribution of the SmokeLoader malware. They analyzed 23 phishing campaigns spanning between May and November 2023, finding that the attackers used spearphishing emails to target financial departments of organizations in the government and administration, defense, telecommunications, retail, and finance sectors. This article continues to discuss the SmokeLoader malware and recent phishing campaigns launched to distribute it.

Help Net Security reports "Attackers Are Targeting Financial Departments With SmokeLoader Malware"

Submitted by grigby1

Submitted by Gregory Rigby on