Attackers Abusing Microsoft and AWS Public Cloud Services to Spread RATs


A malicious campaign has been discovered that is spreading NetWire, Nanocore, and AsyncRAT variants while hosting them on public cloud infrastructure. Since October 2021, the campaign has been running.

Cisco Talos discovered that the hacker group was hosting their malware on public clouds such as Microsoft and Amazon, as well as compromising dynamic DNS for C2 activities.

Read More…