Head Topics

Near-undetectable malware linked to Russia's Cozy Bear

Belgique Nouvelles Nouvelles

Near-undetectable malware linked to Russia's Cozy Bear
Belgique Dernières Nouvelles,Belgique Actualités
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 55 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 25%
  • Publisher: 61%

The fun folk who attacked Solar Winds using a poisoned CV and tools from the murky world of commercial hackware

Once the malware is running, many bad things can happen to infected machines.

But Unit 42 is not concerned with those bad things. The technique used to get BRC4 running is what caught the team's eye, because it is so cunning it suggests nation-state actors were behind its development. Maybe even APT29 – the Moscow-linked gang also known as Cozy Bear and thought to be involved in the attack on Solar Winds and many other raids. APT29 has used poisoned ISOs in the past.

Unit 42 also notes that the ISO used in this attack was created on the same day a new version of BRC4 appeared, suggesting that state-backed actors could be watching the murky world of commercial malware and quickly putting it to work while the world tries to catch up. "The analysis of the two samples described in this blog, as well as the advanced tradecraft used to package these payloads, make it clear that malicious cyber actors have begun to adopt this capability," Unit 42's post states."We believe it is imperative that all security vendors create protections to detect BRC4 and that all organizations take proactive measures to defend against this tool.

Nous avons résumé cette actualité afin que vous puissiez la lire rapidement. Si l'actualité vous intéresse, vous pouvez lire le texte intégral ici. Lire la suite:

TheRegister /  🏆 67. in UK

Belgique Dernières Nouvelles, Belgique Actualités

Similar News:Vous pouvez également lire des articles d'actualité similaires à celui-ci que nous avons collectés auprès d'autres sources d'information.

Rangers fans warned as road near Ibrox Stadium now closed for five monthsRangers fans warned as road near Ibrox Stadium now closed for five monthsPARTS of a busy road near Ibrox Stadium is now closed to traffic for five months.
Lire la suite »

Man arrested after 10 vehicles stolen from farm near LincolnMan arrested after 10 vehicles stolen from farm near LincolnSuspects forced entry into the location and smashed open a key safe before making their escape with the vehicle Lincoln Lincolnshire
Lire la suite »

Man charged with murder after boy, 11, found fatally injured near parkMan charged with murder after boy, 11, found fatally injured near parkA MAN has been charged with the murder of an 11-year-old boy who was found injured near a country park in Derbyshire. Michael Harrison, 41, from Nottingham, has been charged with murder after the b…
Lire la suite »

Kitten rescued from M18 motorway near DoncasterKitten rescued from M18 motorway near DoncasterA traffic officer finds the 'feisty' feline in the middle of the M18 near Doncaster.
Lire la suite »

Biker seriously injured in crash near BostonBiker seriously injured in crash near BostonThe road has been closed to allow collision investigation work to be carried out Lincolnshire
Lire la suite »



Render Time: 2025-04-08 05:05:00