backdoor – Page 2 – Computer Security Articles

IIS extensions are on the rise as backdoors to servers

July 27, 2022 admin backdoor, cryptomining, Exploits and vulnerabilities, extensions, iis, modules, proxylogon, proxyshell, reports, Server, wdigest

Credit to Author: Pieter Arntz| Date: Wed, 27 Jul 2022 13:58:06 +0000

The Microsoft 365 Defender Research Team has warned that attackers are increasingly leveraging Internet Information Services (IIS) extensions as covert backdoors into servers.

The post IIS extensions are on the rise as backdoors to servers appeared first on Malwarebytes Labs.

MalwareBytes Security

APT34 targets Jordan Government using new Saitama backdoor

May 10, 2022 admin apt34, backdoor, Jordan, saitama, Threat Intelligence

Credit to Author: Threat Intelligence Team| Date: Tue, 10 May 2022 20:49:30 +0000

On April 26th, we identified a suspicious email that targeted a government official from Jordan’s foreign ministry. The email contained a malicious Excel document that drops a new backdoor named Saitama. Following our investigation, we were able to attribute this attack to the known Iranian Actor APT34. Also known as OilRig/COBALT GYPSY/IRN2/HELIX KITTEN, APT34 is…

The post APT34 targets Jordan Government using new Saitama backdoor appeared first on Malwarebytes Labs.

MalwareBytes Security

Lenovo issues fixes for laptop backdoors

April 21, 2022 admin backdoor, cve-2021-3970, cve-2021-3971, cve-2021-3972, Exploits and vulnerabilities, firmware, Lenovo, uefi

Credit to Author: Pieter Arntz| Date: Thu, 21 Apr 2022 15:11:05 +0000

Millions of Lenovo laptops were shipped with a backdoor that was intended for the manufacturing process only.

The post Lenovo issues fixes for laptop backdoors appeared first on Malwarebytes Labs.

MalwareBytes Security

New version of IcedID Trojan uses steganographic payloads

December 3, 2019 admin backdoor, banking Trojan, banking trojans, credential stealing, downloader, hooking browsers, icedid trojan, malware, malware analysis, man-in-the-browser attacks, passwords, stealer, stealer functionality, stealing passwords, stealthy malware, Threat analysis, trickbot, trojans

Credit to Author: Threat Intelligence Team| Date: Tue, 03 Dec 2019 18:06:13 +0000

We take a deep dive into the IcedID Trojan, describing the new payloads of this advanced malware.

Categories:

Threat analysis

Tags: backdoor banking Trojan banking Trojans credential stealing downloader hooking browsers IcedID Trojan malware malware analysis man-in-the-browser attacks passwords stealer stealer functionality stealing passwords stealthy malware trickbot Trojans

MalwareBytes Security

Backdoors are a security vulnerability

August 9, 2019 admin apple, Attorney General, backdoor, Clipper Chip, Department of Justice, encryption, FBI, golden key, google, iMessage, iOS 8, iPhone, lawful intercept, luggage, national security agency, NSA, privacy, signal, Transportation Security Administration, TSA, WhatsApp, William Barr

Credit to Author: David Ruiz| Date: Fri, 09 Aug 2019 16:10:27 +0000

Upset by their inability to access potentially vital evidence for criminal investigations, the federal government has, for years, pushed to convince tech companies to build backdoors that will, allegedly, only be used by law enforcement agencies. The problem, cybersecurity researchers say, is that those backdoors can easily be exploited by criminals.

Categories:

Privacy

Tags: Apple Attorney General backdoor Clipper Chip Department of Justice encryption fbi golden key Google iMessage iOS 8 iPhone lawful intercept luggage National Security Agency NSA signal Transportation Security Administration TSA whatsapp William Barr

(Read more…)

The post Backdoors are a security vulnerability appeared first on Malwarebytes Labs.

MalwareBytes Security

A week in security (July 15 – 21)

July 22, 2019 admin 2fa bypass, a week in security, Advanced Persistent Threat, Android apps, APT, backdoor, BitPaymer ransomware, browser extensions, bulletproof, chrome, Cybersecurity education, DataSpii, DDos attack, DoppelPaymer, EvilGnome, Extenbro, FaceApp, Facebook, Facebook reporting tool, Firefox, generation, instagram, Ke3chang, Magecart, Media File Jacking, privacy, RingCentral flaw, Sodinokibi, telegram, vital infrastructure, WhatsApp, Zhumu flaw, zoom zero-day

Credit to Author: Malwarebytes Labs| Date: Mon, 22 Jul 2019 15:50:35 +0000

A roundup of cybersecurity news from July 15–21, including the Zoom camera vulnerability, Extenbro, Sodinokibi, Magecart, and cybersecurity challenges facing the education sector.

Categories:

A week in security

Tags: 2fa bypass advanced persistent threat Android apps APT backdoor BitPaymer ransomware browser extensions bulletproof chrome cybersecurity education DataSpii DDos attack DoppelPaymer EvilGnome Extenbro FaceApp facebook Facebook reporting tool firefox generation Instagram Ke3chang Magecart Media File Jacking privacy RingCentral flaw Sodinokibi telegram vital infrastructure whatsapp Zhumu flaw zoom zero-day

(Read more…)

The post A week in security (July 15 – 21) appeared first on Malwarebytes Labs.

Security Sophos

Puerta trasera descubierta en la biblioteca de Ruby strong_password

July 17, 2019 admin Actualidad, backdoor

Credit to Author: Naked Security| Date: Wed, 10 Jul 2019 09:24:56 +0000

Un desarrollador con buen ojo ha descubierto que se ha introducido recientemente una puerta trasera en una biblioteca (o “gema”) utilizada por las aplicaciones web de Ruby on Rails (RoR) para comprobar la seguridad de la contraseña. Si bien el lenguaje de scripts de Ruby y el RoR no son tan populares como lo eran […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/l3b27C8WyS4″ height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Mac malware combines EmPyre backdoor and XMRig miner

December 7, 2018 admin backdoor, cryptominers, Mac, mac malware, pirated software, Threat analysis, XMRig

Credit to Author: Thomas Reed| Date: Fri, 07 Dec 2018 16:57:36 +0000

New Mac malware is using the EmPyre backdoor and the XMRig cryptominer to drain processor power—and possibly worse.

Categories:

Tags: backdoor cryptominers mac mac malware pirated software XMRig