BlackTech cyber-espionage APT (advanced persistent threat) group has been spotted targeting Japanese companies using novel malware that researchers call ‘Flagpro’.
The threat actor uses Flagpro in the initial stage of an attack for network reconnaissance, to evaluate the target’s environment, and to download second-stage malware and execute it.
The infection chain begins with a phishing email crafted for the target organization, pretending to be a message from a trustworthy partner.
Read more…
Source: Bleeping Computer