Hackers compromised the Outlook mailbox of a senior executive at a major global stock exchange and quietly exfiltrated data for about 150 days, with the activity investigated by Broadcom’s Symantec and Carbon Black team. The attack appears to have been espionage-focused, using disguised Adobe, OneDrive, and Lenovo tasks along with Dropbox and OneDrive for low-volume data theft. #Outlook #Broadcom #Symantec #CarbonBlack
Keypoints
- A senior executive’s email account at a major global stock exchange was compromised.
- The attacker maintained access for roughly 150 days, from October 2025 to March 2026.
- Symantec and Carbon Black assessed the operation as likely espionage.
- Malware was disguised as Adobe and OneDrive applications on the infected host.
- Data was exfiltrated in small batches through Dropbox and OneDrive to avoid detection.
Read More: https://www.securityweek.com/hackers-target-global-stock-exchange-in-espionage-operation/