You're listening to the Cyberwire Network, powered by N2K.

Now, a word about our sponsor, the Johns Hopkins University Information Security Institute.

The J.HU. ISI is home to world-class interdisciplinary experts dedicated to developing

technologies to protect the world's vast online systems and infrastructure and working closely

with U.S. government research agencies and industry partners. The Institute offers dual degree

and joint programs in computer science and health

informatics and has been designated as a center of academic excellence in cyber research.

Learn more at ISI.j.j.u.edu. Hello, hello, and welcome to the CyberWirese research Saturday. I'm Dave Bittner, and this is our weekly conversation with researchers and analysts tracking down the threats and vulnerabilities,

solving some of the hard problems and protecting ourselves in a rapidly evolving cyberspace.

Thanks for joining us.

Storing your credentials in your browsers is generally a bad idea. It's super convenient, you know, save my password.

But this is exactly the type of thing that these Steelers are going to grab.

And over time, they'll have enough information from any given user, both personal and potentially corporate,

to then do social engineering tactics and escalate further that attaching.

That's Sean Kennedy, Global Director of Trustwave Spider Labs.

The research we're discussing today is titled Francis Loder,oder, a JPM-HP-driven malware.

How we stumbled across this Loder malware was that our cyber threat intelligence team works with our threat hunters.

And we were running a threat hunt campaign against the Latradectus loader malware.

And during that threat hunt campaign, our threat intelligence team was monitoring virus total

to find any submissions of Latradectus.

So oftentimes companies will, or just anyone really, will be uploading files to Virus Total for scans or things like that.

And we're looking for Latrodectus. And in doing so, we found another loader that was

...