Kaspersky researchers reported that the attack featured a new strain of malware centered around a backdoor that aims to take over user devices. (Alexxsun/CC BY-SA 4.0)
The notorious hacker-for-hire APT group DeathStalker was detected in the United States for the first time this year, Kaspersky has confirmed. Prior to today’s report, the group had mostly been observed in Europe and Asia.
In a release posted earlier today, Kaspersky researchers also reported that the attack featured a new strain of malware from DeathStalker that was spotted in the wild. The malware centers around a backdoor that the researchers dubbed PowerPepper, which aims to take over user devices.
Kaspersky said PowerPepper leverages DNS over HTTPS as a communications channel to hide communications with the control server behind legitimate-looking traffic. PowerPepper also uses several evasion techniques, including steganography to disguise data.
Active since at least 2012, DeathStalker conducts espionage against small and medium-sized businesses, mostly law firms and fi ..
Support the originator by clicking the read the rest link below.
