Agent Raccoon malware targets the Middle East, Africa and the US

The Agent Raccoon malware has been used in cyberattacks against organizations in the Middle East, Africa, and the U.S. across industries such as education, real estate, and government. Uncovered by Unit42 researchers, the .NET malware creates a covert communication channel via the DNS protocol and is believed to be part of a state-sponsored cyberespionage campaign. The malware mimics Google Update and MS OneDrive Updater programs and is used with tools to steal user credentials.