Cybersecurity Starts in the Boardroom
The Microsoft Threat Intelligence Centre (MSTIC) is reporting on a new strain of malware with destructive capabilities to wipe data from systems. This has primarily been targeting organisations and systems in Ukraine. The malware – designated WhisperGate – appears to act like ransomware but there is are no demands or recovery process …
Continue reading “WhisperGate malware detected by Microsoft Threat Intelligence Centre”
It is a classic move of any developer to reuse code – actually it is a professional move to reuse code that you know works. So it is no surprise that hackers take professional steps to ensure their malware attacks work. Even taking legitimate code from GitHub. Code Reuse In …
Hackers are abusing the MSBuild environment to embedded malicious code into applications to evade detection. Attackers are abusing MSBuild to evade defences and implant Cobalt Strike beacons – SANS Internet Storm Centre
Mozilla has fixed a password leak from its Firefox browser associated with the Windows Cloud Clipboard. Firefox fixes password leak via Windows Cloud Clipboard feature – The Record by Recorded Future What is the Windows Cloud Clipboard? What’s new in Windows 10, version 1809 – What’s new in Windows | …
Continue reading “Windows Cloud Clipboard – Firefox fixes password leak”
Obfuscated backdoor attack: Simple but Undetected PowerShell Backdoor – SANS This is a more complex read but if you are in the business it is a real help to see how these old school attacks still work.
