Researchers believe that the Domino malware is being deployed by former Conti members and has been developed by FIN7, indicating “at least some level of collaboration between the two groups."
QuaDream's spyware has been used in hacks against journalists, political dissidents and non-government organization workers in North America, Central Asia, Europe and the Middle East.
The Winter Vivern APT group is now targeting government agencies and diplomats from the United States and European countries.
Two versions of the 3CX Windows electron app were compromised in a targeted supply chain attack, and researchers have connected it to a North Korean attack group.
Two threat groups have been identified deploying a new variant of the IcedID malware, which often is seen in conjunction with Emotet.