Microsoft SolarWinds analysis: Attackers hid inside Windows systems by wearing the skins of legit processes

21 January 2021

The SolarWinds hackers triggered one of their Cobalt Strike implants in the firm’s network through a cunning VBScript that was activated by a routine system process, Microsoft has said. Microsoft’s deep dive, published yesterday following SolarWinds’ own take on the malware, repeated earlier findings that the hackers went to unusual lengths to disguise their intrusion and avoid detection.

Read full article on The Register

Date:

21 January 2021

Categorie(s):

NEWS

Tag(s):

Attackers, IT, OS, SolarWinds, Windows

ESET integrates with Arctic Wolf to provide greater security visibility25 April 2024
JudgeO Online Code Editor Flaw Let Attackers Execute Code as Root User25 April 2024
Sublime Security secures $20 million to strengthen cloud email security and visibility25 April 2024
DragonForce Ransomware Group Uses LockBit’s Leaked Builder25 April 2024
How To Efficiently Clean Up And Revive Your Mac25 April 2024