Russian Espionage Group Updates Custom Malware Suite

Turla has outfitted a trio of backdoors with new C2 tricks and increased interop, as seen in an attack on a European government. Continue reading Russian Espionage Group Updates Custom Malware Suite

Magecart Credit-Card Skimmer Adds Telegram as C2 Channel

In a rare move, the encrypted messaging service is being used to send stolen payment-card data from websites back to cybercriminals. Continue reading Magecart Credit-Card Skimmer Adds Telegram as C2 Channel

Detecting the Impossible: Serverless C2 in the Cloud

There are certain sophisticated threat behaviors that are generally considered “impossible” to detect on the network, which are both tedious and challenging for security teams to protect against. These include the use of encryption by attackers, filel… Continue reading Detecting the Impossible: Serverless C2 in the Cloud

Command and Control Over ICMP: Chronicles of Red Team C2

Tremendous Red Team related blog post over at Black Hills Infosec, and superbly crafted by Darin Roberts, and detailing How To C2 over ICMP… Enjoy!
The post Command and Control Over ICMP: Chronicles of Red Team C2 appeared first on Security Boulevard.
Continue reading Command and Control Over ICMP: Chronicles of Red Team C2

The MITRE ATT&CK Framework: Command and Control

Most malware these days has some level of Command and Control. This can be to exfiltrate data, tell the malware what instructions to execute next, or download encryption keys in the case of ransomware. In each case of command and control, the attacker … Continue reading The MITRE ATT&CK Framework: Command and Control

Fbot Botnet Chases Down and Cleans Systems Infected with com.ufo.miner

Quite the peculiar botnet was detected in the wild by Qihoo researchers. The botnet, dubbed Fbot and based on the code of Satori, appears to be “just going after and removing another botnet com.ufo.miner”. Fbot is displaying other forms of…. Continue reading Fbot Botnet Chases Down and Cleans Systems Infected with com.ufo.miner