Storm-0978 unleashes PEAPOD to target Women Political Leaders

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

Storm-0978, a threat actor group, utilized a new variant of the RomCom backdoor, “ROMCOM 4.0” also referred to as PEAPOD, to target attendees of the Women Political Leaders (WPL) Summit in Brussels. This summit is dedicated to discussions on gender equality and the participation of women in politics. The attackers created a fraudulent website resembling the official WPL portal, tricking individuals into unknowingly deploying the backdoor.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.