"ScreenConnect Flaws Used to Deploy ToddlerShark Malware"

March 5, 2024 at 04:18 PM

•

1 min read

"ScreenConnect Flaws Used to Deploy ToddlerShark Malware" — Photo: The Hacker News

TL;DR Summary

North Korean threat actors have exploited vulnerabilities in ConnectWise ScreenConnect to deploy a new malware called TODDLERSHARK, which overlaps with known Kimsuky malware such as BabyShark and ReconShark. The malware is designed to capture and exfiltrate sensitive information about compromised hosts and exhibits polymorphic behavior to evade detection. South Korea's National Intelligence Service has accused North Korea of compromising the servers of two domestic semiconductor manufacturers and pilfering valuable data, with the intrusions taking place in December 2023 and February 2024.

Topics:technology #connectwise #cybersecurity #kimsuky #north-korea #screenconnect #toddlershark-malware

Share this article

Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware The Hacker News
North Korea Hits ScreenConnect Bugs to Drop 'ToddleShark' Malware Dark Reading
ScreenConnect flaws exploited to drop new ToddlerShark malware BleepingComputer
New Malware Variant Deployed in ScreenConnect Flaw Exploits Duo Security
Cyber Security Today, March 6, 2024 – VMware and Apple rush out security updates, a new ScreenConnect malware is found, and more IT World Canada

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

82%

450 → 81 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights