Venom Spider Introduces New Malware Tools for Cyberattacks
/ 1 min read
Venom Spider expands its malware-as-a-service capabilities. The threat actor known as Venom Spider has introduced new malware tools, including a backdoor named RevC2 and a loader called Venom Loader, in recent cyberattacks. Detected by Zscaler ThreatLabz, these tools were used in campaigns from August to October 2023, employing tactics such as phishing lures to deliver malicious payloads. RevC2 can steal sensitive data, proxy network traffic, and execute remote commands, while Venom Loader customizes its attacks based on the victim’s computer name. The ongoing evolution of Venom Spider’s malware platform suggests that further enhancements and anti-analysis techniques are likely to emerge, posing increased risks for potential targets. Zscaler has provided resources for organizations to detect and mitigate these threats.