#CobaltStrike

Gootloader Aims Malicious, Custom Bot Army at Enterprise Networks

by

November 6, 2023 at 04:50PM The Gootloader Group, previously known for being an initial access broker and malware operator, has developed a new tool called GootBot. GootBot spreads bots in enterprise environments after compromising them. This new tool is more destructive and difficult to detect. Each bot is controlled by its own command-and-control server, and … Read more

Malicious Notepad++ Google ads evade detection for months

by

October 17, 2023 at 03:52PM A malvertising campaign targeting users searching for the Notepad++ text editor has gone undetected for months. The campaign uses misleading titles in Google search result ads, leading users to a decoy site or a malicious website that serves a payload, likely Cobalt Strike. To avoid downloading malware, avoid clicking on … Read more