Cybersecurity Today Cybersecurity Incidents: Eddie Steeler Malware, ConnectWise Breach, and Nova Scotia Power Data Theft
Jun 2, 2025
Discover the latest in cyber threats, including a new Rust-based malware called Eddie Steeler that exploits CAPTCHA pages. Learn about a significant breach at ConnectWise, potentially linked to state-sponsored hackers, affecting their ScreenConnect customers. The podcast also reveals how Google App Script is being misused for phishing attacks, making it easier for fraudsters to deceive users. Additionally, the data breach at Nova Scotia Power has compromised the social insurance numbers of around 140,000 customers, marking a serious incident in North America.
AI Snips
Chapters
Transcript
Episode notes
Eddie Steeler Malware Tactics
- Eddie Steeler is a Rust-based info stealer deployed via fake CAPTCHA pages using click-fix social engineering.
- It steals credentials, browser data, and crypto wallets by tricking users to run malicious PowerShell scripts.
ConnectWise State-Sponsored Breach
- ConnectWise was breached by a suspected nation-state actor, affecting some ScreenConnect customers.
- The breach was linked to a high-severity vulnerability patched in April 2025.
Phishing via Google Apps Script
- Attackers abuse Google Apps Script to host phishing pages, leveraging the trust in the Google brand.
- This tactic fools users past email filters and phishing defenses.