The CyberWire Daily Podcast 5.31.23
Ep 1834 | 5.31.23

Two RAT infestations. Ghosts of sites past. Trends in identity security. Detecting deepfakes may prove more difficult than you think.

Show Notes

SeroXen is a new elusive evolution of the Quasar RAT that seems to live up to its hype, and DogeRAT is a cheap Trojan targeting Indian Android users. Salesforce ghost sites see abuse by malicious actors. A look into identity security  trends. People may be overconfident in their ability to detect deepfakes. Deepen Desai from Zscaler describes a campaign targeting Facebook users. CW Walker from Spycloud outlines identity exposure in the Fortune 1000. And a blurring of the lines between criminal, hacktivist, and strategic motivations.

Selected reading.

SeroXen RAT for sale (AT&T Cybersecurity)

Sneaky DogeRAT Trojan Poses as Popular Apps, Targets Indian Android Users (The Hacker News)

DogeRAT: The Android Malware Campaign Targeting Users Across Multiple Industries (CloudSek)

Ghost Sites: Stealing Data From Deactivated Salesforce Communities (Varonis)

2023 Trends in Securing Digital Identities (Identity Defined Security Alliance)

Jumio 2023 Online Identity Consumer Study (Jumio)

Void Rabisu’s Use of RomCom Backdoor Shows a Growing Shift in Threat Actors’ Goals (Trend Micro)

Ukraine's DELTA Military System Users Under Attack from Info Stealing Malware (The Hacker News)