"WarmCookie Gives Cyberattackers Tasty New Backdoor for Initial Access"

A Windows backdoor, dubbed "WarmCookie" by Elastic Security Labs, gives attackers entry into targeted systems. Following initial access, they move on to ransomware delivery and system compromise. Starting in late April, the backdoor has been distributed in a phishing campaign called "REF6127." The phishing emails use recruitment and potential jobs as lures. This article continues to discuss findings regarding the WarmCookie malware.

Dark Reading reports "WarmCookie Gives Cyberattackers Tasty New Backdoor for Initial Access"

Submitted by grigby1
 

Submitted by Gregory Rigby on