Unidentified threat actors have deployed a new backdoor that borrows its features from the U.S. Central Intelligence Agency (CIA)‘sHivemulti-platformmalware suite, the source code of which wasreleasedby WikiLeaks in November 2017. “This is the first time we caught a variant of the CIA Hive attack kit in the wild, and we named itxdr33based on its embedded Bot-side certificate CN=xdr33,”