Hackers Using Rogue Versions of KeePass and SolarWinds Software to Distribute RomCom RAT

From thehackernews.com

KeePass and SolarWinds Software

The operators of RomCom RAT are continuing to evolve their campaigns with rogue versions of software such as SolarWinds Network Performance Monitor, KeePass password manager, and PDF Reader Pro.

Targets of the operation consist of victims in Ukraine and select English-speaking countries like the U.K.

“Given the geography of the targets and the current geopolitical situation, it’s unlikely that the RomCom RAT threat actor is cybercrime-motivated,” the BlackBerry Threat Research and Intelligence Team said in a new analysis.

Read more…