National Cyber Warfare Foundation (NCWF)


Warning: Undefined array key "PeopleID" in /var/www/html/includes/libUser.php on line 492

ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks
0 user ratings		2026-02-27 13:17:14
milo
Developers
The North Korean threat actor known as ScarCruft has been attributed to a fresh set of tools, including a backdoor that uses Zoho WorkDrive for command-and-control (C2) communications to fetch more payloads and an implant that uses removable media to relay commands and breach air-gapped networks.
The campaign, codenamed Ruby Jumper by Zscaler ThreatLabz, involves the deployment of malware



Source: TheHackerNews
Source Link: https://thehackernews.com/2026/02/scarcruft-uses-zoho-workdrive-and-usb.html

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Developers


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.