Newly discovered code resembles the Kazuar backdoor and the Sunshuttle second-stage malware distributed by Nobelium in the SolarWinds supply-chain attacks.
Source: Read More (Threatpost)
You might be interested in …
[TheRecord] CobaltSpam tool can flood Cobalt Strike malware servers
A security researcher has published this week a tool to flood Cobalt Strike servers—often used by malware gangs—with fake beacons in order to corrupt their internal databases of infected systems. Named CobaltSpam, the tool was developed by security researcher Mario Henkel. Henkel told The Record today that he created the tool on top of CobaltStrikeParser, a project from security firm […]
[BleepingComputer] CISA shares guidance on how to prevent ransomware data breaches
The US Cybersecurity and Infrastructure Security Agency (CISA) has released guidance to help government and private sector organizations prevent data breaches resulting from ransomware double extortion schemes. […] Source: Read More (BleepingComputer)
[SecurityWeek] Mitigating Threats to Encryption From Quantum and Bad Random
read more Source: Read More (SecurityWeek RSS Feed)