DarkHydrus abuses Google Drive to spread RogueRobin Trojan

The DarkHydrus advanced persistent threat (APT) group is back and this time is not only using Windows vulnerabilities to infect victims but is also abusing Google Drive as an alternative communications channel.

Last week, researchers from the 360 Threat Intelligence Center (360TIC) said the hackers have a new campaign underway which is focusing on targets in the Middle East of political value.

Also tracked as Lazy Meerkat by Kaspersky Lab researchers, which has deemed the threat group as both “sneaky” and “creative,” the latest DarkHydrus scheme was first spotted after 360TIC secured samples of malicious Microsoft Excel documents on 9 January 2019.

Read more…
Source: ZDNet