#backdoor-malware

[ follow ]
#apt24 #badaudio #supply-chain #phishing #ghostredirector #seo-fraud #windows-server-compromise
Information security
fromThe Hacker News
8 hours ago

APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1,000+ Domains

APT24 uses BADAUDIO and other malware to maintain persistent remote access in a nearly three-year campaign targeting Taiwan, U.S. sectors via supply-chain and phishing attacks.
fromTechzine Global
2 months ago

GhostRedirector: Chinese hackers plague Windows servers

ESET Research has discovered a new Chinese hacker group. The group, dubbed "GhostRedirector," has already compromised 65 Windows servers with unique malware. So far, Europe has been spared. GhostRedirector targets companies in America and Southeast Asia and uses advanced backdoors to maintain access. GhostRedirector shows remarkable determination by implementing multiple access methods. In addition to their own tools, they use publicly known exploits such as EfsPotato and BadPotato to create privileged user accounts.
Information security
[ Load more ]