Hackers are using fake HIV test results as a lure to infect computers and steal personal data in a newly exposed phishing campaign, security researchers say.
"If successful and Koadic is installed, attackers can run programs and access victims' data including sensitive personal and financial information," DeGrippo warned. "Originally Koadic was intended as an open-source tool for network defenders and allows the actor to take complete control over a user's system," DeGrippo wrote.
"Sofacy group has leveraged open source or freely available tools and exploits in the past but this is the first time that Unit 42 has observed them leveraging the Koadic toolkit," its report said.