Since at least November 2023, a new malware called Latrodectus has been distributed in various phishing campaigns. The malware exhibits evasion functionality making it difficult to detect and shows qualities similar to the IcedID malware which threat actors used as an initial access broker (IAB) to sell unauthorized access to other threat actors facilitating further exploitation. Researchers from Proofpoint and Team Cymru postulate that "Latrodectus will become increasingly used by financially motivated threat actors across the criminal landscape, particularly those who previously distributed IcedID.” WaterISAC is sharing this information for member awareness. For more information on the Latrodectus malware, access The Hacker News and Proofpoint.