Threat Advisories

APT10 distributes LODEINFO malware to deploy infection chains

November 2, 2022

Threat Level

Red

Actor Report

For a detailed threat advisory, download the pdf file here

Summary

The APT 10 cyber espionage gang has been spotted adopting a new stealthy infection chain to deploy the LODEINFO backdoor shellcode to exfiltrate sensitive information to Command and Control (C2).

Patch available for pre-announced Critical Vulnerability in OpenSSL

Exploitation of Follina leads to takeover of domain controller