May 24, 2023
An unknown threat actor has been observed leveraging a malicious Windows kernel driver in attacks likely targeting the Middle East since at least May 2020.
Fortinet Fortiguard Labs, which dubbed the artifact WINTAPIX (WinTapix.sys), attributed the malware with low confidence to an Iranian threat actor.
“WinTapix.sys is essentially a loader,” security researchers Geri Revay and Hossein Jazi said
Fortinet Fortiguard Labs, which dubbed the artifact WINTAPIX (WinTapix.sys), attributed the malware with low confidence to an Iranian threat actor.
“WinTapix.sys is essentially a loader,” security researchers Geri Revay and Hossein Jazi said
Article posted by: https://thehackernews.com/2023/05/new-wintapixsys-malware-engages-in.html
——————————————————————————————————————–
Infocerts, 5B 306 Riverside Greens, Panvel, Raigad 410206 Maharashtra, India
Contact us – https://www.infocerts.com
