minute read
Authors
What are the odds?
Last weekend, one of our sales managers was at a trade fair in Amsterdam.
When he received a message asking if he wanted to accept a file via bluetooth, he agreed.
Turns out he had the doubtful honor of being the first to report a sighting of Worm.SymbOS.Comwar.a (also known as Commwarrior.b) ITW in the Netherlands.
So that’s yet another country we can add to the list.
Authors
From the same authors
In the same category
Kaspersky discloses new tools and techniques discovered in 2025 Tomiris activities: multi-language reverse shells, Havoc and AdaptixC2 open-source frameworks, communications via Discord and Telegram.
Kaspersky experts analyze the ToddyCat APT attacks targeting corporate email. We examine the new version of TomBerBil, the TCSectorCopy and XstReader tools, and methods for stealing access tokens from Outlook.
Kaspersky GReAT experts dive deep into the BlueNoroff APT’s GhostCall and GhostHire campaigns. Extensive research detailing multiple malware chains targeting macOS, including a stealer suite, fake Zoom and Microsoft Teams clients and ChatGPT-enhanced images.
Kaspersky researchers discovered previously unidentified commercial Dante spyware developed by Memento Labs (formerly Hacking Team) and linked it to the ForumTroll APT attacks.
Worm.SymbOS.Comwar spotted in the Netherlands