North Korean state-sponsored threat actor ScarCruft (APT37) is conducting spear-phishing campaigns that impersonate Microsoft Account security alerts to distribute NarwhalRAT malware. The social engineering tactic leverages fake security notifications to create urgency and trick recipients into executing malicious payloads. This campaign demonstrates continued evolution in APT37's tactics targetin
The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages impersonating Microsoft Account security notifications to deliver malware called NarwhalRAT. "The attack email contained a message impersonating an MS account security alert," the Genians Security Center (GSC) said. "It was designed to create concern over possible
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
