A cyberespionage group with suspected ties to the Kazakh and Lebanese governments has unleashed a new wave of attacks against a multitude of industries with a retooled version of a 13-year-old backdoor Trojan. Check Point Research called out hackers affiliated with a group named Dark Caracal in a new report published yesterday for their efforts to deploy “dozens of digitally signed variants” of the Bandook Windows Trojan over the past year. The different verticals singled out by the threat actor include government, energy, food industry, healthcare, education, IT, and legal institutions.
Source: https://thehackernews.com/2020/11/digitally-signed-bandook-malware-once.html