Cybersecurity analysts at NSFOCUS Security Labs recently uncovered an unknown phishing-based attack process during threat-hunting.
Apart from this, during their further investigation, they identified two new Trojans and rare attack methods.
NSFOCUS Security Labs suspects a skilled APT attacker is behind the novel phishing process, using it as a primary method for in-domain penetration against specific targets.
AtlasCross is the attacker, while DangerAds and AtlasAgent are the new Trojans identified by NSFOCUS Security Labs.
Security researchers reported that threat actors behind AtlasCross are actively using the weaponized Word documents to deploy malware.