May 17, 2024 at 08:33AM Cybersecurity researchers have provided insights into Deuterbear, a remote access trojan (RAT) used by the China-linked BlackTech group as part of their cyber espionage campaign in the Asia-Pacific region. Deuterbear exhibits advanced capabilities and is an updated version of the older malware Waterbear. Additionally, Proofpoint detailed a targeted cyber campaign … Read more
May 16, 2024 at 03:47AM This report provides a detailed analysis of Earth Hundun’s cyberespionage campaign, focusing on the evolution from Waterbear to Deuterbear malware. Deuterbear displays advancements in capabilities such as shellcode plugins and HTTPS communication for C&C operations. The report also outlines the functionalities and differences between the two malware variants. The comprehensive … Read more
April 19, 2024 at 10:48AM BlackTech has targeted technology, research, and government sectors in the Asia-Pacific region with cyber attacks. They have updated their modular backdoor called Waterbear and introduced its enhanced successor, Deuterbear. Trend Micro researchers describe the complexity of Waterbear and its evasive techniques. Earth Hundun, the threat actor, has been active since … Read more
April 11, 2024 at 06:12AM Earth Hundun, a cyberespionage group, has been refining the Waterbear and Deuterbear malware to infiltrate technology and government sectors in the Asia-Pacific region. The malware, particularly Deuterbear, employs advanced evasion tactics and HTTPS encryption for network traffic protection, posing significant challenges to organizational defenses. Trend Micro continues to enhance monitoring … Read more