C2 – Page 2 – WindowsTechs.com

Russia’s GRU Military Unit Behind Previously Unknown Linux Malware, NSA Says

Posted on August 14, 2020 by Silviu STAHIE

The National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have revealed the existence of a new piece of malware named Drovorub, most likely developed by a military unit of the Russian General Staff Main Intelligence Directorate (… Continue reading Russia’s GRU Military Unit Behind Previously Unknown Linux Malware, NSA Says→

NSA, FBI Warn of Linux Malware Used in Espionage Attacks

Posted on August 13, 2020 by Lindsey O'Donnell

A never before seen malware has been used for espionage purposes via Linux systems, warn the NSA and FBI in a joint advisory. Continue reading NSA, FBI Warn of Linux Malware Used in Espionage Attacks→

[SANS ISC] Powershell Bot with Multiple C2 Protocols

Posted on August 3, 2020 by Xavier

I published the following diary on isc.sans.edu: “Powershell Bot with Multiple C2 Protocols“: I spotted another interesting Powershell script. It’s a bot and is delivered through a VBA macro that spawns an instance of msbuild.exe This Windows tool is often used to compile/execute malicious on the fly (I already wrote a diary about this

The post [SANS ISC] Powershell Bot with Multiple C2 Protocols appeared first on /dev/random.

Continue reading [SANS ISC] Powershell Bot with Multiple C2 Protocols→

Going Down the Spyware Rabbit Hole with SilkBean Mobile Malware

Posted on July 22, 2020 by Lindsey O'Donnell

An Android spyware attack was recently discovered that targeted the Uyghur ethnic minority group – since 2013. Continue reading Going Down the Spyware Rabbit Hole with SilkBean Mobile Malware→

Masad Spyware Uses Telegram Bots for Command-and-Control

Posted on September 27, 2019 by Tara Seals

The malware harvests data, steals cryptocurrency and drops additional malware, while masquerading as a Fortnite aimbot and more. Continue reading Masad Spyware Uses Telegram Bots for Command-and-Control→

Panda Threat Group Mines for Monero With Updated Payload, Targets

Posted on September 17, 2019 by Lindsey O'Donnell

Though harboring unsophisticated payloads, the Panda threat group has updated its tactics – from targets to infrastructure – and successfully mined hundreds of thousands of dollars using cryptomining malware. Continue reading Panda Threat Group Mines for Monero With Updated Payload, Targets→

Decrypting L0rdix RAT’s C2

Posted on August 2, 2019 by Alex Holland

In my previous blog post on L0rdix RAT, I took a look at its panel and builder components that have been circulating through underground forums recently. I identified a key as part of that analysis, 3sc3RLrpd17, embedded in one of the PHP pag… Continue reading Decrypting L0rdix RAT’s C2→

April 7, 2019 – Hack Naked News #217

Posted on May 7, 2019 by Security Weekly Productions

This week, software flaw exposed most dell computers to remote hacking, Israel neutralizes cyber attack by blowing up a building with hackers, an expert that found hundreds of vulnerable Jenkins plugins, a bug in Mirai code allows crashing C2 serve… Continue reading April 7, 2019 – Hack Naked News #217→

April 7, 2019 – Hack Naked News #217

Posted on May 7, 2019 by Security Weekly Productions

April 30, 2019 – Hack Naked News #216

Posted on April 30, 2019 by Security Weekly Productions

This week, how a politicians’ kids accessed his laptop through facial recognition, critical flaws in WordPress and Qualcomm chips, how 2 million IoT security cameras and baby monitors are vulnerable to takeover, and how a new Emotet variant u… Continue reading April 30, 2019 – Hack Naked News #216→