Descriptive Alt Text

MORE_EGGS Backdoor: A Growing Threat to Recruiters

October 7, 2024 Reading Time: 2 minutes

A recent report by Trend Micro , highlights that attackers are leveraging the “MORE_EGGS” backdoor in a phishing campaign, primarily targeting recruitment platforms. These attackers compromise websites commonly used by recruiters to infect their devices, aiming to achieve financial gain.

Overview

The Trend Micro report details the technical aspects of the MORE_EGGS which is a JScript backdoor a part of Golden Chickens Malware-as-a-Service (MaaS) toolkit which is mainly used by threat actors such as FIN6 and the Cobalt Group.

It appears to be a custom-developed malware for gaining remote access to compromised devices. Once executed, the backdoor can steal sensitive information, deploy additional malware such as infostealer and ransomware with the help of command-and-control (C&C) server.

Consequences of Phishing Attacks

A successful phishing attack can lead to serious consequences, such as stolen data being used for identity theft, financial fraud, or further exploitation of sensitive information. Additionally, malware deployed through phishing attacks can disrupt business operations, resulting in significant financial losses.

What This Means For You

This type of attack is very common and exploited easily. Here are some steps recruiters can take to mitigate the risk:

  • Avoid clicking on suspicious links
  • Avoid downloading unknown files
  • Up-to-date antivirus
  • Follow cyber hygiene
  • Educate yourself and the team about cyber security and awareness.
  • Regular updates of OS, browser, other softwares to patch known vulnerabilities.

The cybersecurity domain is constantly changing and evolving. It is important to stay up to date with the latest developments and threats to minimise the risk of falling victim to cyberattacks.


If you would like to discover how Secora Consulting can assist you in keeping your business secure, please get in touch by filling out the form below 👇.

Let's Talk About Your Project

Leave us your details and one of our team will reach out to explore how we can assist with your cybersecurity requirements.

Postal address

The BASE Enterprise Centre

Railway Road

Stranorlar

Co. Donegal

Ireland

F93 VAK6

Phone number
IE: +353 74 970 7876 | UK: +44 20 4538 2818

To learn more about your data and privacy rights, visit our Privacy Statement.