[HackerNews] Hackers Targeting Myanmar Use Domain Fronting to Hide Malicious Activities

A malicious campaign has been found leveraging a technique called domain fronting to hide command-and-control traffic by leveraging a legitimate domain owned by the Myanmar government to route communications to an attacker-controlled server with the goal of evading detection.
The threat, which was observed in September 2021, deployed Cobalt Strike payloads as a stepping stone for launching

Source: Read More (The Hacker News)

You might be interested in …

[BleepingComputer] Chinese cyberspies are targeting US, EU orgs with new malware

Chinese threat groups continue to deploy new malware strains on the compromised network of dozens of US and EU organizations after exploiting vulnerable Pulse Secure VPN appliances. […] Source: Read More (BleepingComputer)

Read More

[SecurityWeek] Rising Cyberattacks in West Highlight Vulnerabilities

All posts, Security Week

A series of high-profile cyberattacks on targets in the West have highlighted the vulnerability of companies and institutions, making the issue a higher public priority but with no easy solution. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SANS ISC] Windows, Fixed IPv4 Addresses and APIPA, (Fri, Feb 25th)

All posts, Sans-ISC

APIPA stands for Automatic Private IP Addressing. It’s Microsoft Windows’ mechanism to assign an IPv4 address to a network adapter when no DHCP server is offering an address. The IP range for APIPA IPv4 addresses is 169.254.0.0/16. When your Windows machine is configured to use DHCP to configure its network interface, and when there is […]

Read More