Legion AWS credential harvester and hijacker analyzed | allinfosecnews.com

May 24, 2023, 10 a.m. | Help Net Security

Help Net Security www.helpnetsecurity.com

Researchers from Cado Labs recently encountered an update to the emerging cloud-focused malware family, Legion. This sample iterates upon the credential harvesting features of its predecessor, with a continued emphasis on exploiting PHP web applications. In this Help Net Security video, Matt Muir, Threat Intelligence Researcher at Cado Security, overviews Legion’s cloud-specific functionality.

The post Legion AWS credential harvester and hijacker analyzed appeared first on Help Net Security.

applications aws cado security cloud credential credential harvesting credentials cybercrime don't miss emerging exploiting family features harvester help net security hot stuff intelligence labs legion malware matt matt muir php researcher researchers security threat threat intelligence update video web web applications

More from www.helpnetsecurity.com / Help Net Security

Snowflake denies breach, blames data theft on poorly secured customer accounts 11 hours ago | www.helpnetsecurity.com

accounts actor aware breach +26

Snowflake compromised? Attackers exploit stolen credentials 1 day, 13 hours ago | www.helpnetsecurity.com

accounts analytics attackers claims +26

25,000 individuals affected in BBC Pension Scheme data breach 1 day, 19 hours ago | www.helpnetsecurity.com

bbc breach current data +20

Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919) 1 day, 20 hours ago | www.helpnetsecurity.com

0 day accounts april attackers +31

apexanalytix Cyber Risk provides instant alerts for supplier data breaches 1 day, 23 hours ago | www.helpnetsecurity.com

account alerts apexanalytix breaches +24

Lack of skills and budget slow zero-trust implementation 2 days, 4 hours ago | www.helpnetsecurity.com

amp breach budget cyber +24

Encrypted Notepad: Open-source text editor 2 days, 4 hours ago | www.helpnetsecurity.com

ads aes app connection +19

New infosec products of the week: May 31, 2024 2 days, 5 hours ago | www.helpnetsecurity.com

adaptive shield capabilities dashlane detectify +21

NIST says NVD will be back on track by September 2024 2 days, 21 hours ago | www.helpnetsecurity.com

agency aim back backlog +24

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com