New SharkLoader Malware Campaign Deploys Cobalt Strike on Government and Diplomatic Targets

A newly identified cyberattack campaign is deploying a previously undocumented malware family named SharkLoader, which functions as a loader to deliver Cobalt Strike Beacon on compromised systems. The activity, tracked by Kaspersky under the name StrikeShark, has targeted a diplomatic organization in Indonesia and government entities in Taiwan. SharkLoader is specifically designed to facilitate the deployment of Cobalt Strike, a legitimate penetration testing tool repurposed for malicious post-exploitation activities. No specific dates, technical indicators, or CVE IDs were disclosed in the reported findings. The campaign’s impact includes potential unauthorized access and persistence within affected networks.