Taiwanese NGOs Under Attack: UAT-10362 and LucidRook Malware Exposed

A newly identified threat cluster, known as UAT-10362, has been linked to targeted spear-phishing campaigns focusing on Taiwanese non-governmental organizations (NGOs) and potentially universities.

The primary goal of these campaigns is to deploy a novel Lua-based malware strain called LucidRook, which boasts sophisticated capabilities.

LucidRook operates as a stager, incorporating a Lua interpreter and Rust-compiled libraries into a dynamic-link library (DLL), facilitating the download and execution of additional malicious components.

The use of Lua and Rust in LucidRook’s design highlights the evolving nature of malware development, as attackers seek to leverage a broader range of programming languages to evade detection and enhance their tools’ versatility.

Given the targeted nature of these attacks, it’s crucial for Taiwanese NGOs and educational institutions to bolster their cybersecurity defenses, including implementing robust email filtering systems and conducting regular security awareness training for staff.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

The Evolution of Enterprise Security: Moving Beyond ‘Doctor No’

Cybersecurity Threats: Hybrid P2P Botnet and Apache RCE Vulnerability