Threat Post

Watering Hole Attacks Push ScanBox Keylogger

Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool. A China-based threat actor has ramped up efforts ...
Threat Post

Four Distinct Watering Hole Attacks Dropping ScanBox Keylogger

PwC has published research on four watering hole attacks likely carried out by different attackers, all connected by the ScanBox JavaScript-based reconnaissance tool. The appearance of the ScanBox ...
PC World

‘ScanBox’ keylogger targets Uyghurs, US think tank, hospitality industry

A diversification of targets for a clever keylogging attack suggests that several hacking groups may be using the “ScanBox” framework, which spies on users without installing malicious software.