Suspected CoralRaider Continues To Expand Victimology Using Three Information Stealers
Cisco Talos has disclosed details on a campaign that has been ongoing since February 2024 to distribute three information-stealing malware, including Crypbot, LummaC2, and Rhadamanthys. Updated versions of each of the payloads are being deployed in attacks, each equipped with new obfuscation techniques to evade detection and exfiltrate data of interest from targeted systems.