APT-C-60 Conducts Malware Attack on Japanese Organizations
/ 1 min read
🦠 APT-C-60 Launches Sophisticated Malware Attack on Japanese Organizations. In August 2024, JPCERT/CC confirmed a targeted cyberattack attributed to the threat group APT-C-60, which employed legitimate platforms like Google Drive, Bitbucket, and StatCounter to deliver malware. The attack initiated with a phishing email disguised as a job application, leading victims to download a malicious file that executed a script via a legitimate executable. The malware, identified as SpyGrace v3.1.6, utilized advanced techniques for persistence and stealth, including COM hijacking and encrypted communication with command-and-control servers. This incident highlights the growing threat of cyberattacks exploiting trusted services, particularly in East Asia, and raises concerns about the security of widely used platforms.
