Threat actor leverages coin miner techniques to stay under the radar – here’s how to spot them

Credit to Author: Eric Avena| Date: Mon, 30 Nov 2020 22:30:31 +0000

BISMUTH, which has been running increasingly complex cyberespionage attacks as early as 2012, deployed Monero coin miners in campaigns from July to August 2020. The group’s use of coin miners was unexpected, but it was consistent with their longtime methods of blending in.

The post Threat actor leverages coin miner techniques to stay under the radar – here’s how to spot them appeared first on Microsoft Security.

Read more

Release the Kraken: Fileless injection into Windows Error Reporting service

Credit to Author: Threat Intelligence Team| Date: Tue, 06 Oct 2020 15:00:00 +0000

We discovered a new attack that injected its payload—dubbed “Kraken—into the Windows Error Reporting (WER) service as a defense evasion mechanism.

Categories:

Tags:

(Read more…)

The post Release the Kraken: Fileless injection into Windows Error Reporting service appeared first on Malwarebytes Labs.

Read more

Release the Kraken: Fileless APT attack abuses Windows Error Reporting service

Credit to Author: Threat Intelligence Team| Date: Tue, 06 Oct 2020 15:00:00 +0000

We discovered a new attack that injected its payload—dubbed “Kraken—into the Windows Error Reporting (WER) service as a defense evasion mechanism.

Categories:

Tags:

(Read more…)

The post Release the Kraken: Fileless APT attack abuses Windows Error Reporting service appeared first on Malwarebytes Labs.

Read more