CoralRaider’s Malware Campaign Distributing Stealers Via CDN Cache

Summary:

A persistent malware campaign has been distributing three distinct stealers—CryptBot, LummaC2, and Rhadamanthys. This campaign utilizes Content Delivery Network (CDN) cache sites to host its malicious payload. CoralRaider, a financially motivated threat actor known for targeting social network accounts and credentials, is believed to be behind this campaign.

Threat Level – Red | Attack Report

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.