When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
A new report from cybersecurity researchers ESET recently observed a previously unknown threat actor which they dubbed Blackwood.
It is unknown exactly how the attackers are able to intercept the traffic.
ESET believes Blackwood might be using an implant in the victims networks, possibly in routers and similar devices.
The malware they look to install on target endpoints is called NSPX30.
NSPX30 has grown into a capable tool, however.
It can also steal chat logs and contact lists from different communications apps, including Telegram, and Skype.
Most of the victims seem to be located in China.
However, there are compromised devices in Japan, and the United Kingdom, too.
Blackwoods activities can be traced back to 2020.
