According to cybersecurity company Lumen, a recent HiatusRAT campaign used a US military procurement system for reconnaissance.
HiatusRAT has been targeting high-bandwidth routers frequently used by medium-sized businesses since it was first discovered at the beginning of the year. It enables attackers to execute commands, exfiltrate data, and create a covert proxy network.
By March 2023, there had been at least 100 victims of the threat, which had been active at least since June 2022 and targeted organisations in Europe and Latin America.
After HiatusRAT was first reported, the threat actor changed his strategy and began focusing on reconnaissance against the US military procurement system and Taiwan-based organisations in attacks seen in June 2023.
Read More: US Military Targeted in Recent HiatusRAT Attack
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
