![](https://webcf.waybackmachine.org/web/20230811093404/https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2022/07/28105711/abstract_dangerous_box-800x450.jpg)
Focus on DroxiDat/SystemBC
An unknown actor targeted an electric utility in southern Africa with Cobalt Strike beacons and DroxiDat, a new variant of the SystemBC payload. We speculate that this incident was in the initial stages of a ransomware attack.