BackBox.org News
  • BackBox.org
  • Linux
  • Community
  • News
  • Services
  • Sitemap
  • Contact
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks

ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks

February 27, 2026/in General News

The North Korean threat actor known as ScarCruft has been attributed to a fresh set of tools, including a backdoor that uses Zoho WorkDrive for command-and-control (C2) communications to fetch more payloads and an implant that uses removable media to relay commands and breach air-gapped networks.
The campaign, codenamed Ruby Jumper by Zscaler ThreatLabz, involves the deployment of malware

The Hacker News – ​Read More

Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on LinkedIn
  • Share on Vk
  • Share on Reddit
  • Share by Mail
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 0 0 admin https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png admin2026-02-27 13:06:592026-02-27 13:06:59ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks
Search Search
Copyright © BackBox.org
  • Link to X
  • Link to Facebook
  • Link to LinkedIn
  • Link to Youtube
  • Link to Telegram
Link to: Aeternum Botnet Loader Employs Polygon Blockchain C&C to Boost Resilience Link to: Aeternum Botnet Loader Employs Polygon Blockchain C&C to Boost Resilience Aeternum Botnet Loader Employs Polygon Blockchain C&C to Boost Resilien... Link to: Chilean Carding Shop Operator Extradited to US Link to: Chilean Carding Shop Operator Extradited to US Chilean Carding Shop Operator Extradited to US
Scroll to top Scroll to top Scroll to top