Iranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware Attacks
Iranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware Attacks
26 October 2023
The Iranian threat actor known as Tortoiseshell has been attributed to a new wave of watering hole attacks that are designed to deploy a malware dubbed IMAPLoader.
"IMAPLoader is a .NET malware that has the ability to fingerprint victim systems using native Windows utilities and acts as a downloader for further payloads," the PwC Threat Intelligence said in a Wednesday analysis.
"It uses email