#exfiltration

[ follow ]
#credential-theft #cloud-security #worm-like-propagation #threat-actor-tradecraft #developer-targeting
Information security
fromThe Hacker News
5 days ago

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

PCPJack steals credentials from exposed cloud and application services, exfiltrates data via attacker infrastructure, spreads worm-like, and aims for illicit revenue.
fromInfoWorld
5 months ago

North Korea's 'Job Test' trap upgrades to JSON malware dropboxes

The final payload (BeaverTail) showed previously seen capabilities, including "usage of Axioms as embedded HTTP client, enumeration and exfiltration of system information, searching browser profiles and extension directories for sensitive data, and searching for and exfiltrating Word documents, PDF files, screenshots, secret files, files containing environment variables, and other sensitive files such as the logged-in user's Keychain".
Information security
[ Load more ]