SUNSPOT Malware Was Used to Inject SolarWinds Backdoor
As the investigation into the SolarWinds supply-chain attack continues, cybersecurity researchers have disclosed a third malware strain that was deployed into the build environment...
Tagged: Backdoor
Cyberwarfare / Email Security / Endpoint Security / Fraud & Identity Theft / Malware / NEWS & INDUSTRY / Vulnerabilities
‘Earth Wendigo’ Hackers Exfiltrate Emails Through JavaScript Backdoor
A newly identified malware attack campaign has been exfiltrating emails from targeted organizations using a JavaScript backdoor injected into a webmail system widely used...
Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways
Image: Zyxel More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root...
Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products
Zyxel has released a patch to address a critical vulnerability in its firmware concerning a hardcoded undocumented secret account that could be abused by...
Ransomware Gangs Use ‘SystemBC’ Tor Backdoor in Attacks
Researchers at Sophos noticed recently that the operators of multiple ransomware families have been using a backdoor named SystemBC, which provides attackers a connection...
This ‘off the shelf’ Tor backdoor malware is now a firm favorite with ransomware operators
A Remote Access Trojan (RAT) on sale in underground forums has evolved to abuse Tor when maintaining persistence on infected machines. On Thursday, Sophos...
New Evidence Suggests SolarWinds’ Codebase Was Hacked to Inject Backdoor
The investigation into how the attackers managed to compromise SolarWinds’ internal network and poison the company’s software updates is still underway, but we may...
US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor
State-sponsored actors allegedly working for Russia have targeted the US Treasury, the Commerce Department’s National Telecommunications and Information Administration (NTIA), and other government agencies...
Hack-for-Hire Group ‘DeathStalker’ Uses New Backdoor in Recent Attacks
Over the past several months, the “mercenary” advanced persistent threat (APT) group known as DeathStalker has been using a new PowerShell backdoor in its...
Newly Discovered Turla Backdoor Used in Government Attacks
ESET’s security researchers have discovered yet another piece of malware that Russian cyber-espionage group Turla has been using in its attacks. Active since at...