Add to favourites
News Local and Global in your language
22nd of February 2018


Gold Dragon Helps Olympics Malware Attacks Gain Permanent Presence on Systems, Reports McAfee

Gold Dragon Helps Olympics Malware Attacks Gain Permanent Presence on Systems, Reports McAfee Feb 05, 2018 1:38 PM PST Comments: 0 Views: 5,411

A report recently released by McAfee Advanced Threat Research (ATR) revealed a fileless attack targeting organizations involved with the Pyeongchang Olympics. It was known that the attack used a PowerShell implant to establish a channel to the attacker's server in order to gather basic system-level data. However what was not determined at that time was what occurred after the attacker gained access to the victim's system. Ryan Sherstobitoff and Jessica Saavedra-Morales from McAfee report: "[We] now discovered additional implants that are part of an operation to gain persistence for continued data exfiltration and for targeted access. We have named these implants, which appeared in December 2017, Gold Dragon, Brave Prince, Ghost419, and Running Rat, based on phrases in their code. ... We now believe this implant is the second-stage payload in the Olympics attack that ATR discovered January 6, 2018. The PowerShell implant [Gold Dragon] used in the Olympics campaign was a stager based on the PowerShell Empire framework that created an encrypted channel to the attacker's server."

If you are pressed for time ...

... this is for you. More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

Vinton Cerf, Co-designer of the TCP/IP Protocols & the Architecture of the Internet Hackers Use Tesla's Amazon Cloud Account to Mine Cryptocurrency

Tesla's cloud environment has been infiltrated by hackers and used to mine cryptocurrencies, researchers have discovered. Other victims include Aviva and Gemalto. more

Feb 20, 2018 10:37 AM PST Views: 1,189 Botnets Shift Focus to Credential Abuse, Says Latest Akamai Report

Akamai's Fourth Quarter, 2017 State of the Internet, was released today in which it states that the analysis of more than 7.3 trillion bot requests per month has found a sharp increase in the threat of credential abuse, with more than 40 percent of login attempts being malicious. more

Feb 20, 2018 9:49 AM PST Views: 1,033 Hackers Earned Over $100K in 20 Days Through Hack the Air Force 2.0

HackerOne has announced the results of the second Hack the Air Force bug bounty challenge which invited trusted hackers from all over the world to participate in its second bug bounty challenge in less than a year. more

Feb 16, 2018 7:47 AM PST Views: 1,513 UK's Government Websites Infected by Cryptocurrency Mining Malware

Thousands of websites are reported to have been infected by malware over the weekend forcing visitors' computers to mine cryptocurrency while using the sites. more

Feb 12, 2018 12:57 PM PST Views: 3,542 Pyeongchang Olympics Organizers Investigating Possible Cyberattack on Opening Day

Reports from various sources indicate Pyeongchang Olympics organizers were looking into a disruption of non-critical systems on the day of the opening ceremony but could not yet confirm if it was a cyberattack. more

Feb 10, 2018 9:45 AM PST Views: 3,765 Cryptocurrency Mining Attacks for the First Time Detected on Industrial Control Systems

A water utility in Europe was compromised by cryptocurrency malware mining attack; the attack is the first public discovery of an unauthorized cryptocurrency miner impacting industrial controls systems. more

Feb 07, 2018 7:35 PM PST Views: 2,843 Thailand has Become the World's Leading Hotspot for Cryptocurrency Mining Malware

New research indicates Thailand as being the world's number one hotspot for cryptocurrency mining malware. more

Feb 01, 2018 11:21 AM PST Views: 4,888 Alphabet Launches New Cybersecurity Company, Chronicle

A new cybersecurity company called Chronicle has emerged from Alphabet's "moonshot factory," that's dedicated to helping companies find and stop cyberattacks before they cause harm. more

Jan 31, 2018 3:54 PM PST Views: 4,952 Industrial Plant Attack Generates Renewed Concerns Over Critical Infrastructure Hacking Threats

A recent malware attack on the control systems of an industrial plant has renewed concerns about the threat hacking poses to critical infrastructure. more

Jan 19, 2018 5:39 PM PST Views: 6,923 Some Hackers Earning Over 16 Times That of Full-Time Software Engineers in Their Home Country

A report from one of the largest documented surveys conducted on the ethical hacking community reveals some hackers are earning over 16 times that of full-time software engineers in their home country. more

Jan 19, 2018 1:40 PM PST Views: 5,929 Hackers Hijack DNS Server for Cyrptocurrency Wallet BlackWallet, Over $400K Stolen From Users

Unknown hackers (or hacker) have hijacked the DNS server for, a web-based wallet application for the Stellar Lumen cryptocurrency (XLM). more

Jan 14, 2018 7:02 PM PST Views: 6,166 Banking Industry Evaluating Security Benefits of Blockchain to Send Encrypted Information

The banking industry is evaluating security benefits of using blockchain to send encrypted information. more

Jan 09, 2018 5:47 AM PST Views: 5,402 Two Romanians Charged for Hacking Washington DC Police Computers Linked to Surveillance Cameras

US prosecutors have charged two Romanians with hacking Washington DC police computers linked to surveillance cameras just days before President Donald Trump's inauguration. more

Dec 29, 2017 9:43 AM PST Views: 6,107 Cyberattack Causes Operational Disruption to Critical Infrastructure Using New Malware TRITON

A new malware designed to manipulate industrial safety systems was deployed against a critical infrastructure organization that provides emergency shutdown capability for industrial processes, according to a report released today. more

Dec 14, 2017 3:54 PM PST Views: 8,894 Former Rutgers University Student and Two Other Men Plead Guilty to 2016 Mirai Botnet Attacks

A New Jersey man was one of the three who pled guilty to hacking charges and creating the massive Mirai botnet attacks which spread via vulnerabilities in IoT devices causing massive DDoS attacks. more

Dec 13, 2017 11:35 AM PST Views: 12,439 Read More

Leave A Comment

More News

Latest ITProPortal news

Dev Pro

TechCrunch » Enterprise

TechRadar: Internet news

How-To Geek

Disclaimer and is not the owner of these news or any information published on this site.