Cloud Threats Memo: Multiple DarkGate Loader Campaigns Exploiting Legitimate Cloud Services | allinfosecnews.com

Oct. 30, 2023, 4:12 p.m. | Paolo Passeri

Threat Labs - Netskope www.netskope.com

DarkGate Loader is a commodity malware loader with multiple features including the ability to download and execute files to memory, a Hidden Virtual Network Computing (HVNC) module, keylogging, information-stealing capabilities, and privilege escalation. Its distribution mechanism also makes use of legitimate AutoIt files to inject the malicious payload. The DarkGate Loader is normally distributed via […]

The post Cloud Threats Memo: Multiple DarkGate Loader Campaigns Exploiting Legitimate Cloud Services appeared first on Netskope.

autoit campaigns capabilities cloud cloud services cloud threats commodity malware computing darkgate distribution download escalation exploiting features files hidden hvnc information inject keylogging loader malicious malware mechanism memory network network computing payload privilege privilege escalation services stealing threat labs threats virtual virtual network computing

More from www.netskope.com / Threat Labs - Netskope

Netskope Threat Labs Stats for March 2024 1 week, 1 day ago | www.netskope.com

actionable actionable intelligence active threats apps +22

Netskope Threat Coverage: Evil Ant Ransomware 2 weeks, 1 day ago | www.netskope.com

ant continuity down drives +18

Cloud Threats Memo: Multiple Legitimate Cloud Storage Services Exploited to Target Israeli Organizations 4 weeks, 1 day ago | www.netskope.com

app apps cloud cloud apps +19

Netskope Threat Labs Stats for February 2024 1 month ago | www.netskope.com

actionable actionable intelligence active threats apps +23

From Delivery To Execution: An Evasive Azorult Campaign Smuggled Through Google Sites 1 month, 2 weeks ago | www.netskope.com

azorult campaign data defender +21

Cloud Threats Memo: Google Drive Abused to Target Organizations in Asian Countries 1 month, 3 weeks ago | www.netskope.com

advanced advanced persistent threat apt campaign +28

Netskope Threat Labs Stats for January 2024 2 months, 1 week ago | www.netskope.com

actionable actionable intelligence active threats apps +21

Cloud Threats Memo: Back to the Basics: New DarkGate Campaign Exploiting Microsoft Teams 2 months, 3 weeks ago | www.netskope.com

back basics campaign campaigns +29

Rising Threats: Social Engineering Tactics in the Cloud Age 3 months ago | www.netskope.com

access age attackers attacks +27

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States

View on infosec-jobs.com

Cybersecurity Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX

View on infosec-jobs.com

Penetration Testing Engineer- Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700

View on infosec-jobs.com

Internal Audit- Compliance & Legal Audit-Dallas-Associate

@ Goldman Sachs | Dallas, Texas, United States

View on infosec-jobs.com

Threat Responder

@ Deepwatch | Remote

View on infosec-jobs.com