CyberNews Briefs

Windows malware: Slub taps Slack, GitHub to steal your info

Researchers with Trend Micro have discovered a new malware campaign in which victims are infected with ‘Slub’ malware through a watering hole attack on an unnamed website. The malware allows attackers to steal data from infected Windows devices by relying on Slack, GitHub and file.io, a popular file-sharing website.

In a watering hole attack, threat actors inject malicious code into a legitimate website that is likely to be frequented by the users who are the real targets of the attackers. When victims visit the website, their device will be infected. In this case, the compromised website appealed to people interested in “political activities”, and would infect users with ‘Slub’.

Read more: Windows malware: Slub taps Slack, GitHub to steal your info

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.