What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in Backdoor

Cyberattackers Serve Up Custom Backdoor for Oracle Restaurant Software

The modular malware is highly sophisticated but may not be able to capture credit-card info. ModPipe, a previously unknown backdoor, has been purpose-built to attack restaurant point-of-sale (PoS) solutions from Oracle. It’s notable for its unusual sophistication, according to researchers, evidenced by its multiple modules. The code is specifically taking . . . Read more

Microsoft Exchange Attack Exposes New xHunt Backdoors

An attack on the Microsoft Exchange server of an organization in Kuwait revealed two never-before-seen Powershell backdoors. Two never-before-seen Powershell backdoors have been uncovered, after researchers recently discovered an attack on Microsoft Exchange servers at an organization in Kuwait . The activity is tied back to the known xHunt threat . . . Read more

Russian Espionage Group Updates Custom Malware Suite

Turla has outfitted a trio of backdoors with new C2 tricks and increased interop, as seen in an attack on a European government.

Creepy covert camera “feature” found in popular smartwatch for kids

by Paul Ducklin If you nearly didn’t read this article because you thought the headline sounded unsurprising, like “Dinosaurs Still Extinct” or “Sun to Rise in East”… …then be aware that we nearly didn’t write it for the same reason. Bugs and vulnerabilities in built-down-to-a-price devices made for kids are, . . . Read more

Rare Bootkit Malware Targets North Korea-Linked Diplomats

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

TeamTNT Gains Full Remote Takeover of Cloud Instances

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Triple-Threat Cryptocurrency RAT Mines, Steals and Harvests

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

CactusPete APT Hones Toolset, Resurfaces with New Espionage Targets

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Black Hat 2020: Linux Spyware Stack Ties Together 5 Chinese APTs

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.