ScarCruft APT Malware Uses Image Steganography

Credit: Virus Bulletin

he North Korean ScarCruft Advanced Persistent Threat (APT) malware is pretty advanced. Not only does it contain a rare Bluetooth harvesting component to capture device data using a Windows Bluetooth Application Programming Interface (API), but it also uses image steganography to obfuscate its network traffic. ScarCruft was observed by the Kaspersky GReAT research team targeting Russian and Vietnamese…