remote access tool – Page 2

Liverpool Voyeur Used IM-RAT to Video Women at Home

Posted on January 8, 2020 by Tara Seals

The case highlights the rising issue of stalkerware, which has reached epidemic proportions. Continue reading Liverpool Voyeur Used IM-RAT to Video Women at Home→

Authorities Break Up Imminent Monitor Spyware Organization

Posted on December 2, 2019 by Tara Seals

The infrastructure behind a remote access tool (RAT) allowing full remote takeover of a victim machine has been dismantled. Continue reading Authorities Break Up Imminent Monitor Spyware Organization→

Europol Shuts Down ‘Imminent Monitor’ RAT Operations With 13 Arrests

Posted on November 29, 2019 by Unknown

In a coordinated International law enforcement operation, Europol today announced to shut down the global organized cybercrime network behind Imminent Monitor RAT, yet another hacking tool that allows cybercriminals to gain complete control over a vict… Continue reading Europol Shuts Down ‘Imminent Monitor’ RAT Operations With 13 Arrests→

Massive Portfolio of APT (Advanced Persistent Threat) and RAT (Remote Access Tools) Domains Spotted in the Wild – An Analysis

Posted on September 20, 2019 by Dancho Danchev

In a world dominated by thousands of currently active APT (Advanced Persistent Threat) campaigns also known as Remote Access Tools (RATs) including trojan horses it’s worth pointing out that novice cybercriminals continue relying and actively utilizing… Continue reading Massive Portfolio of APT (Advanced Persistent Threat) and RAT (Remote Access Tools) Domains Spotted in the Wild – An Analysis→

Elderly China Chopper Tool Still Going Strong in Multiple Campaigns

Posted on August 28, 2019 by Tara Seals

Multiple actors in multiple campaigns are using the web shell for remote access, even though it’s almost a decade old and hasn’t been updated. Continue reading Elderly China Chopper Tool Still Going Strong in Multiple Campaigns→

‘China Chopper’ web shell makes a comeback in Lebanon, other Asian countries

Posted on August 27, 2019 by Shannon Vavra

Malicious code first discovered nine years ago that has historically been used by groups associated with Chinese state-backed hacks has made a comeback, according to new research from Cisco’s Security and Intelligence Research Group, Talos. The hacking tool is web shell known as China Chopper. A web shell is a script that allows attackers to remotely access servers running web applications. This particular web shell has long been known to be an exploit that’s often impervious to being outed and detected. “China Chopper is a slick little web shell that does not get enough exposure and credit for its stealth,” FireEye researchers wrote in 2013 in their blog on the matter. China Chopper’s code as historically been small, according to security researcher Keith Tyler, who wrote on the tool in 2012. That much appears to be the same now — Talos researchers note the most recent campaign has been “extremely simple,” containing just one […]

The post ‘China Chopper’ web shell makes a comeback in Lebanon, other Asian countries appeared first on CyberScoop.

Continue reading ‘China Chopper’ web shell makes a comeback in Lebanon, other Asian countries→

Employers Beware: Microsoft Word ‘Resume’ Phish Delivers Quasar RAT

Posted on August 27, 2019 by Lindsey O'Donnell

A round of phishing emails purports to be from job seekers – but actually uses a slew of detection evasion tactics to download malware on victim systems. Continue reading Employers Beware: Microsoft Word ‘Resume’ Phish Delivers Quasar RAT→

An Analysis of L0rdix RAT, Panel and Builder

Posted on July 19, 2019 by Alex Holland

L0rdix is a multipurpose remote access tool (RAT) that was first discovered being sold on underground criminal forums in November 2018. Shortly after its discovery, Ben Hunter of enSilo analysed the RAT’s functionality. Although L0rdix’s author s… Continue reading An Analysis of L0rdix RAT, Panel and Builder→

Russian charged with stealing $1.5 million in hacks on U.S. tax preparers

Posted on April 30, 2019 by Jeff Stone

U.S. authorities have charged a Russian citizen in a scam that netted $1.5 million through bogus tax returns between June 2014 and November 2016, the Department of Justice announced Monday. Anton Bogdanov — who went by “Kusok,” according to court documents — is accused of computer intrusion, aggravated identity theft and other wrongdoing as part of his alleged role in a plot to combine hacking with traditional fraud techniques to steal money from the U.S. government. Bogdanov and others leveraged access to hacked computers at private U.S. tax preparation firms to steal individuals’ personal information, exploiting a vulnerability in an unnamed remote access program used by accountants to log in from home and while traveling, according to the indictment. They allegedly would use that access to change the information on victims’ tax returns, and redirect their refunds to debit cards under the thieves’ control, according to the Justice Department. Those debit cards […]

The post Russian charged with stealing $1.5 million in hacks on U.S. tax preparers appeared first on CyberScoop.

Continue reading Russian charged with stealing $1.5 million in hacks on U.S. tax preparers→

Backdoored GitHub accounts spewed secret sneakerbot software

Posted on March 7, 2019 by Danny Bradbury

Researchers have uncovered a network of GitHub accounts containing backdoored versions of legitimate software. Continue reading Backdoored GitHub accounts spewed secret sneakerbot software→