Void Banshee APT Exploits Microsoft Zero-Day in Spear-Phishing Attacks

July 16, 2024 at 10:34AM An APT group named Void Banshee exploited an unpatched Microsoft zero-day (CVE-2024-38112) in a spear-phishing campaign to spread Atlantida Stealer across North America, Europe, and Southeast Asia. The group used malicious PDFs to target victims and extract sensitive data and system information from their machines, taking advantage of unsupported services … Read more

Void Banshee APT Exploits Microsoft MHTML Flaw to Spread Atlantida Stealer

July 16, 2024 at 05:15AM The Void Banshee APT group was discovered exploiting a zero-day vulnerability in the Microsoft MHTML browser engine to distribute the Atlantida information stealer. It was used in a multi-stage attack chain via specially crafted internet shortcut files. The group targets organizations globally and has a history of information theft and … Read more