In its latest attack, FIN8 is infiltrating companies to carry out surveillance and obtain privilege escalation to deploy a payload of malware called Sardonic.
Researchers are calling the HolesWarm the "king of vulnerability exploitation" as the malware has already exploited 20 known Linux and Windows vulnerabilities in just a month.
According to researchers, cybercriminals are abusing legitimate challenge and response services like Google’s reCAPTCHA) or deploying customized fake CAPTCHA-like validation.
