New Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike Payloads

from The Hacker News 2 weeks ago

Researchers have uncovered a sophisticated attack targeting Chinese-speaking users, utilizing phishing emails to deploy Cobalt Strike payloads on Windows systems.
The Hacker Newshttps://thehackernews.com/2024/08/new-cyberattack-targets-chinese.html

With attackers remaining undetected for over two weeks, they successfully moved laterally and established persistence within compromised systems.
The Hacker Newshttps://thehackernews.com/2024/08/new-cyberattack-targets-chinese.html

The covert campaign SLOW#TEMPEST initiates with malicious ZIP files containing an LNK file disguised as a Microsoft Word document, indicating potential targeting of specific Chinese sectors.
The Hacker Newshttps://thehackernews.com/2024/08/new-cyberattack-targets-chinese.html

By using DLL side-loading via LicensingUI.exe, which is reported for the first time, the attackers gain persistent access to infected hosts for further exploitation.
The Hacker Newshttps://thehackernews.com/2024/08/new-cyberattack-targets-chinese.html

Read at The Hacker News

#cybersecurity #phishing #cobalt-strike #sophisticated-attacks #dll-side-loading

[

Collection

]

[

...

]

New Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike PayloadsNew Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike Payloads Briefly

New Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike Payloads
New Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike Payloads
Briefly