Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware
March 5, 2024 at 12:04PM North Korean threat actors have exploited ConnectWise ScreenConnect’s security flaws to launch TODDLERSHARK malware, overlapping with known Kimsuky malware BabyShark and ReconShark. Exploiting exposed setup wizard, threat actors execute VB-based malware, gaining ‘hands on keyboard’ access. Toddlershark exhibits polymorphic behavior and is used for reconnaissance. NIS accuses North Korea of … Read more