Threat Research

    New Lua-based Malware “LucidRook” Observed in Targeted Attacks Against Taiwanese Organizations

    A threat cluster tracked as UAT-10362 APT is conducting spear-phishing campaigns targeting Taiwanese NGOs and academic institutions, delivering a newly identified malware family called LucidRook. The malware uses a DLL-based stager embedding Lua and Rust components to execute staged payloads, with region-specific checks to target Traditional Chinese environments....
    4/9/2026  0
    Read More »

    Boggy Serpens Threat Assessment

    Boggy Serpens (also known as MuddyWater), an Iranian state-linked threat group associated with MOIS, continues to conduct cyberespionage campaigns targeting diplomatic entities and critical infrastructure sectors such as energy, maritime, and finance....
    3/17/2026  0
    Read More »

    Reborn in Rust: Muddy Water Evolves Tooling with RustyWater Implant

    The Muddy Water APT has launched a spearphishing campaign targeting diplomatic, maritime, financial, and telecom sectors across the Middle East, delivering malicious Word documents with icon spoofing....
    1/16/2026  0
    Read More »

    New Stealer Uses Invalid Cert To Compromise Systems

    The Fickle Stealer, a new Rust-based information stealer, has emerged in May 2024. It spreads through phishing, drive-by downloads, and exploit kits, often using malicious attachments or invalid certificates to compromise systems....
    11/12/2024  0
    Read More »
    Looking for Something?
    Threat Research Categories:
    Tags

    Privacy & Security StatementTerms & Conditions
    Copyright © 2026 by Gurucul - All rights reserved.