Middle East targeted by Earth Bogle using NjRAT malware
Middle East targeted by Earth Bogle using NjRAT malware
Threat Level
Actors Report
For a detailed threat advisory, download the pdf file here
Summary
Earth Bogle’s active campaign hosts malware on public cloud storage sites like files.fm and failiem.lv. Compromised web servers also distribute NjRAT, also known as Bladabindi, a remote access trojan (RAT) malware discovered in 2013, used to gain unauthorized access and control over victim devices.