CISA Warns of New RAT Aimed at US Defense Contractors

Hidden Cobra, an APT group associated with the government of North Korea, is thought to be behind the campaign.

The Department of Homeland Securitys Cybersecurity and Infrastructure Security Agency (CISA) has issued a Malware Analysis Report on BLINDINGCAN, a new remote-access Trojan variant used by North Korean threat actors. According to the report, the FBI has high confidence that Hidden Cobra, an APT group known to be associated with the government of North Korea, is using BLINDINGCAN to establish a presence on networks and exfiltrate data.
CISA says Hidden Cobra targeted government contractors earlier this year in an attempt to gather intelligence surrounding key military and energy technologies. The documents used in the campaign featured job postings from defense contractors as lures and, when opened, installed BLINDINGCAN on the victims systems.
The report recommends organizations follow best practices regarding malicious email messages to avoid being infected by the malware.
Read more
here
.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
CISA Warns of New RAT Aimed at US Defense Contractors