#persistence-mechanisms

[ follow ]
#apt41 #cobalt-strike #government-targeting #infection-chains #remote-access-trojan-rat #malware-distribution
Information security
fromThe Hacker News
2 weeks ago

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

Silver Dragon, an APT41-linked group, targets European and Southeast Asian government entities through server exploitation, phishing, and Cobalt Strike beacons since mid-2024.
Information security
fromThe Hacker News
2 weeks ago

Trojanized Gaming Tools Spread Java-Based RAT via Browser and Chat Platforms

Threat actors distribute trojanized gaming utilities via browsers and chat platforms to deploy a multi-purpose RAT that establishes persistence through scheduled tasks and evades detection via Microsoft Defender exclusions.
fromTheregister
6 months ago

ChillyHell modular macOS malware OKed by Apple in 2021

The malware, written in C++ and developed for Intel architectures, was originally reported by Mandiant in 2023. At the time, the Google-owned threat hunters linked it to a group it tracks as UNC4487 (UNC is how Google tracks uncategorized threat groups) that had breached a Ukrainian auto insurance website used by government officials for official travel. But despite being documented by the security shop, ChillyHell wasn't flagged as malicious.
Information security
[ Load more ]