Blueliv Intelligence Briefing

Your cybersecurity news summary

Thursday,   August 20th,   2020

Welcome to today’s intelligence briefing, covering noteworthy items on the cybersecurity news agenda.

Find these stories on the Blueliv Threat Exchange Network, a global community of thousands of cybersecurity experts, IT professionals and academics. Membership is free.

Read the latest research blogs from the Blueliv Labs team.

Discovered North Korean BLINDINGCAN RAT malware

"CISA received four Microsoft Word Open Extensible Markup Language (XML) documents (.docx), two Dynamic-Link Libraries (DLLs)," the alert reads. "The .docx files attempt to connect to external domains for a download. A 32-bit and a 64-bit DLL was submitted that install a 32-bit and a 64-bit DLL named 'iconcache.db' respectively. The DLL 'iconcache.db' unpacks and executes a variant of Hidden Cobra RAT". Based on CISA and FBI malware analysis results, the BLINDINGCAN malware can also remove itself from compromised systems and clean its traces to avoid detection among other capabilities Learn more >

Demo Free Trial MSSP