ReverseRAT, a remote access trojan, was used in massive attack campaigns that remained undetected for six months, targeting businesses in South and Central Asia.
The latest variation of this, the ReverseRat 2.0 dubbed by Black Lotus researchers, is also being prominent alongside a new threat agent called the Night Fury.
Researchers claim that it also helps the threat actors to evade antivirus softwares using a new version of the preBotHta loading file.
How the new variant is different from its predecessor?
- It employs night fury instead of an open-source Rat that was used previously known as the AlkaKore.
- This new variant is intense enough to create, list, and delete the registry keys.
- ReverseRat 2.0 is equipped with the capability to steal files from USB connections and collect pictures via webcams that are infected already.
Security measures against Trojans
- Update firewalls and antivirus to the latest versions
- Only download well-reviewed apps and files from trusted sources.
- Avoid clicking random ads
- Install a real-time monitoring system
Are you still concerned about the Trojan attacks? Get in touch with Adcy.io’s cybersecurity experts for Real-time, Tailored Cybersecurity Solutions for your organization.