New Phishing Campaign Bypasses Microsoft ATP to Deliver Adwind to Utilities Industry
released on 2019-08-20 @ 10:37:47 AM
The Cofense Phishing Defense Center has observed a new phishing campaign that spoofs a PDF attachment to deliver the notorious Adwind malware. This campaign was found explicitly in national grid utilities infrastructure. Adwind, aka JRAT or SockRat, is sold as a malware-as-a-service where users can purchase access to the software for a small subscription-based fee.