Cybersecurity researchers have identified a new malware strain called Speagle that hijacks the functionality and infrastructure of Cobra DocGuard, a legitimate software program. The malware is specifically designed to harvest sensitive information from infected computers while disguising its activities as normal operations.
Speagle operates by compromising Cobra DocGuard servers and using them as conduits for data exfiltration. The malware transmits stolen data to these compromised servers, effectively masking the theft process as legitimate network traffic associated with the DocGuard software.