When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
This group recently started targeting German organizations with an email phishing campaign delivering the Rhadamanthys malware.
In the campaign, they impersonated the German retail company Metro, and sent messages related to invoices.
It was also this script that the researchers believe could have been written by generative AI.
This doesnt change anything when it comes to defenses, the researchers further explained.
The mechanisms against these threats remain the same.
TA547 has been active for a few years now, usually delivering the NetSupport RAT.
However, the group was also observed dropping StealC and Lumma Stealer.
To tackle the idea, the tools developers placed roadblocks, preventing the creation of malicious content.
However crooks have so far been successful in working around these solutions.
