The Iranian state-sponsored threat actor tracked under the moniker Lyceum has turned to using a new custom .NET-based backdoor in recent campaigns directed against the Middle East.
“The new malware is a .NET based DNS Backdoor which is a customized version of the open source tool ‘DIG.net,'”…
Link: Iranian Hackers Spotted Using a new DNS Hijacking Malware in Recent Attacks
via thehackernews.com
Techie.Buzz 