An unusual attack using an open-source Python package installer called Chocolatey, steganography and Scheduled Tasks is stealthily delivering spyware to companies.
Threatpost
Posts tagged "Backdoor"
Daxin Espionage Backdoor Ups the Ante on Chinese Malware
Via node-hopping, the espionage tool can reach computers that aren’t even connected to the internet.
Threatpost
Roaming Mantis Expands Android Backdoor to Europe
The ‘smishing’ group lives up to its name, expanding globally and adding image exfiltration to the Wroba RAT it uses to infect mobile victims.
Threatpost
Charming Kitten Sharpens Its Claws with PowerShell Backdoor
The notorious Iranian APT is fortifying its arsenal with new malicious tools and evasion tactics and may even be behind the Memento ransomware.
‘Fully Undetected’ SysJoker Backdoor Malware Targets Windows, Linux & macOS
The malware establishes initial access on targeted machines, then waits for additional code to execute.
Threatpost
Turla APT Plants Novel Backdoor In Wake of Afghan Unrest
“TinyTurla,” simply coded malware that hides away as a legitimate Windows service, has flown under the radar for two years.
FIN8 Targets US Bank With New ‘Sardonic’ Backdoor
The latest refinement of the APT’s BadHatch backdoor can leverage new malware on the fly without redeployment, making it potent and nimble.
FIN7’s Liquor Lure Compromises Law Firm with Backdoor
Using a lure relating to a lawsuit against the owner of Jack Daniels whiskey, the cybergang launched a campaign that may be bent on ransomware deployment.
Threatpost
FIN7 Backdoor Masquerades as Ethical Hacking Tool
The financially motivated cybercrime gang behind the Carbanak RAT is back with the Lizar malware, which can harvest all kinds of info from Windows machines.
Threatpost