Gh0st RAT – WindowsTechs.com

Chinese-aligned hacking group targeted more than a dozen government agencies, researchers find

Posted on June 21, 2024 by AJ Vicens

The activity highlights a rapidly evolving, aggressive cyberespionage operation that played out across Africa, Europe, the Middle East and Asia, a Talos report says.

The post Chinese-aligned hacking group targeted more than a dozen government agencies, researchers find appeared first on CyberScoop.

Continue reading Chinese-aligned hacking group targeted more than a dozen government agencies, researchers find→

Bronze Union APT Updates Remote Access Trojans in Fresh Wave of Attacks

Posted on February 27, 2019 by Lindsey O'Donnell

The China-linked threat group has returned in 2018 using updated RATs to launch its attacks, including ZxShell, Gh0st RAT, and SysUpdate malware. Continue reading Bronze Union APT Updates Remote Access Trojans in Fresh Wave of Attacks→

Cyberespionage Group Steps Up Campaigns Against Japanese Firms

Posted on October 14, 2017 by Tom Spring

Researchers unearth new tactics and strategies used by the criminals behind the hacking group known as Bronze Butler. Continue reading Cyberespionage Group Steps Up Campaigns Against Japanese Firms→

Software vulnerabilities used to spread WannaCry are favorites for hackers, FireEye says

Posted on June 2, 2017 by Chris Bing

The same Microsoft Windows’ software vulnerabilities that allowed the WannaCry ransomware to spread globally are now being used by a wide array of hackers to infect computers with remote access trojans, according to new research by U.S. cybersecurity firm FireEye. The research serves to show just how widespread the use of “EternalBlue,” otherwise known as the MS017-010 exploit, continues to be. Although Microsoft previously issued several different software security updates for older versions of Windows, many computers remain unpatched and therefore vulnerable. The addition of the EternalBlue exploit to Metasploit, software made for penetration testing but which is also used for illegal hacking, “has made it easy for threat actors to exploit these vulnerabilities,” a FireEye blog post reads. “In the coming weeks and months, we expect to see more attackers leveraging these vulnerabilities and to spread such infections with different payloads,” the post says. According to FireEye researchers, well-known malware payloads like […]

The post Software vulnerabilities used to spread WannaCry are favorites for hackers, FireEye says appeared first on Cyberscoop.

Continue reading Software vulnerabilities used to spread WannaCry are favorites for hackers, FireEye says→

EternalBlue Exploit Spreading Gh0st RAT, Nitol

Posted on June 2, 2017 by Tom Spring

FireEye said threat actors are using the NSA’s EternalBlue exploit of the same Microsoft SMBv1 vulnerability as WannaCry to spread Nitol and Gh0st RAT. Continue reading EternalBlue Exploit Spreading Gh0st RAT, Nitol→