NET Assemblies injected in memory, Malicious DLLs, PowerShellĪPT-C-36 is a South American cyber espionage group that has been actively targeting Latin America-based entities over the last few years. 20, the BlackBerry Research and Intelligence team witnessed a new campaign where the threat actor impersonated a Colombian government tax agency to target key industries in Colombia, including health, financial, law enforcement, immigration, and an agency in charge of peace negotiation in the country.īased on the infector vector and payload deployment mechanism, we also uncovered campaigns targeting Ecuador, Chile, and Spain.
It relies on spear-phishing emails sent to specific and strategic companies to conduct its campaigns.
APT-C-36, also known as Blind Eagle, has been actively targeting organizations in Colombia and Ecuador since at least 2019.
0 kommentar(er)
