The upcoming 23rd Annual US-Taiwan Defense Industry Conference has been targeted by a malware campaign aimed at stealing data, according to Cyble Research and Intelligence Labs (CRIL) in a post on September 13. The attack was designed to intercept attendees with a counterfeit registration form delivered as a ZIP file, which when opened would trigger a hidden executable to download and compile malicious code in real time, all within system memory. CRIL enumerates MITRE ATT&CK techniques identified in the attack, and suggests risk prevention should include anti-phishing tactics, better monitoring of network traffic and in-memory operations, and management of user privileges. Ref https://www.scmagazine.com/news/malware-attack-targets-us-taiwan-defense-conference
