UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns
Summary
A new threat cluster, UAT-10362, has been observed conducting spear-phishing attacks against Taiwanese NGOs and suspected universities. The campaigns aim to deploy a novel Lua-based malware named LucidRook, which functions as a sophisticated stager.
IFF Assessment
FOE
The emergence of a new threat cluster and custom malware targeting critical organizations represents a new and evolving threat to defenders.
Defender Context
Defenders should be aware of UAT-10362 and LucidRook as potential threats, particularly those focusing on Taiwanese organizations. Vigilance against spear-phishing attempts, especially those seemingly originating from trusted sources, is crucial for mitigating these campaigns.