The PDFSIDER malware exploits the legitimate PDF24 App through a DLL side-loading technique, enabling stealthy data theft and remote access. This APT-level campaign utilizes spear-phishing and encrypted communications, with potential links to groups like Mustang Panda, and is also being adopted by ransomware groups for payload delivery.
Edward Kiledjian
@ekiledjian