Dossier
Starland RAT
Coverage of Starland RAT in the Nexus archive.
- Russian hackers trojanize WebEx, Zoom apps to push Starland malware
A financially motivated Russian threat actor, UAT-11795, is using trojanized WebEx and Zoom apps to deploy a new backdoor called Starland RAT, which steals credentials and cryptocurrency. The malware is part of a campaign targeting users through compromised software.