From BYOVD to 0-Day - Unveiling Advanced Exploits in Cyber Recruiting Scams

Dive into a groundbreaking cybersecurity investigation uncovering a sophisticated attack disguised as a job recruitment campaign targeting the Asia region. Explore the intricate attack chain featuring undocumented loaders, a novel Admin-Kernel 0-day exploit, and advanced rootkit capabilities. Learn how attackers utilized various delivery methods, including email attachments and WhatsApp messages, to distribute malicious ISO files. Discover the unprecedented level of sophistication in this attack, including the use of a fully functional, undocumented RAT achieving kernel mode access, exploitation of a Windows driver vulnerability, and advanced rootkit features capable of disabling critical security solutions. Gain insights from senior malware researchers as they reveal the technical details of this cutting-edge cyber threat and its implications for the cybersecurity landscape.