APT GoldenJackal: Espionage at diplomatic facilities
The APT group GoldenJackal was discovered by Kaspersky, but has been active since 2019. As the investigation shows, the group primarily targets governmental and diplomatic institutions. GoldenJackal exploits the Follina vulnerability as an infection vector. Kaspersky has been monitoring the activities of the skillful and moderately inconspicuous threat actor since mid-2020. The APT group is characterized by a special toolset that allows it to control victims' computers, spread across systems using removable drives and extract specific files from there. The functionalities indicate that…