A Custom Malware Is Used by Nobelium APT to Backdoor Windows Domains

The Nobelium hacking group is using a new malware to deploy additional payloads and steal sensitive info from the Active Directory Federation Services (AD FS) servers. Cozy Bear is a…

Backdoored Client from Mongolian CA MonPass

Avast –  Avast –  We discovered an installer downloaded from the official website of MonPass, a major certification authority (CA) in Mongolia in East Asia that was backdoored with Cobalt…