Lunch Time Nibbles - 2022-09-15

Welcome to another Lunch Time breakout:

Webworm hackers modify old malware in new attacks to evade attribution
Chinese cyberespionage hackers of the 'Webworm' group are undergoing experimentation, using modified decade-old RATs (remote access trojans) in the wild. [...]
Read more....

Webworm Hackers Using Modified RATs in Latest Cyber Espionage Attacks
A threat actor tracked under the moniker Webworm has been linked to bespoke Windows-based remote access trojans, some of which are said to be in pre-deployment or testing phases. "The group has developed customized versions of three older remote access trojans (RATs), including Trochilus RAT, Gh0st RAT, and 9002 RAT," the Symantec Threat Hunter team, part of Broadcom Software, said in a report
Read more....