Short Summary:
On July 24, 2024, a threat actor conducted a spear-phishing attack against a German entity by distributing a password-protected installer disguised as a Falcon Crash Reporter. The installer executed a sophisticated agent, named Ciro, using LLVM Intermediate Representation (IR) bitcode, indicating a high level of social engineering and malware sophistication.…