When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
This group typically focuses on South Korean human rights activists, defectors, and political entities in Europe.
This campaign used a unique method involving toast pop-up ads to deliver zero-click malware infections.
By using this zero-click method, ScarCruft was able to silently infect systems without user interaction.
Once the vulnerability is exploited, ScarCruft delivers RokRAT malware to the infected systems.
The infection process consists of four stages, with each payload injected into the explorer.exe process to evade detection.
ViaBleepingComputer
