GootLoader and FakeUpdates Malware Campaign Targets Law Firms

Two separate threat campaigns targeted six different law firms in January and February 2023, distributing GootLoader and FakeUpdates, also known as SocGholish malware. GootLoader is a first-stage downloader capable of delivering a wide range of secondary payloads such as Cobalt Strike and ransomware and has been active since late 2020. To funnel victims searching for business-related documents […]

The post GootLoader and FakeUpdates Malware Campaign Targets Law Firms appeared first on Heimdal Security Blog.