Watering Hole Attack Targets Media Website with Malware
/ 1 min read
💻🌐 New Watering Hole Attack Targets Media Website with Sophisticated Malware. A recent watering hole attack exploited a media-related website in 2023, infecting users with malware through a compromised JavaScript embedded in the site. When users logged in with specific credentials, an LZH file was automatically downloaded, leading to the execution of a malicious LNK file that installed the SQRoot malware. This malware communicates with a command and control (C2) server, downloading additional plugins for various malicious functions, including remote access and data theft. The attack highlights the growing threat of social engineering tactics, emphasizing the need for enhanced security measures beyond traditional vulnerability assessments. The attackers’ identity remains unknown, but the malware shows similarities to previous APT10 operations.
