#UnfurlingHemlock

Multi-Malware ‘Cluster Bomb’ Campaign Drops Widespread Cyber Havoc

by

July 1, 2024 at 06:00PM “Unfurling Hemlock,” a financially motivated Eastern European threat actor, is using a cluster bomb cyber tactic to distribute up to 10 unique malware files at a time on systems in the US, Germany, Russia, and other countries. The attacker distributes malware through nested compressed Microsoft Cabinet (CAB) files and has … Read more

New Unfurling Hemlock threat actor floods systems with malware

by

June 27, 2024 at 06:28PM Unfurling Hemlock, a threat actor, infects systems with a “malware cluster bomb” method, delivering various malware including information stealers, botnets, and backdoors. The attacks start with ‘WEXTRACT.EXE’ file execution and target multiple countries, with a focus on the United States. The group is likely based in Eastern Europe and sells … Read more