all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Decoding Water Sigbin's Latest Obfuscation Tricks

Add to bookmarks
w
May 30, 2024, midnight | Sunil Bharti

Trend Micro Simply Security www.rssmix.com

Water Sigbin (aka the 8220 Gang) exploited the Oracle WebLogic vulnerabilities CVE-2017-3506 and CVE-2023-21839 to deploy a cryptocurrency miner using a PowerShell script. The threat actor also adopted new techniques to conceal its activities, making attacks harder to defend against.

8220 gang actor attacks conceal cryptocurrency cryptocurrency miner cve cve-2023-21839 decoding deploy exploited gang latest making miner obfuscation oracle oracle weblogic powershell powershell script reports script techniques threat threat actor trend micro research : articles trend micro research : cloud trend micro research : endpoints trend micro research : reports trend micro research : research tricks vulnerabilities water weblogic

Visit resource

More from www.rssmix.com / Trend Micro Simply Security

Tr
Omdia Report: Trend Disclosed 60% of Vulnerabilities 1 day, 15 hours ago | www.rssmix.com
cybersecurity cybersecurity threat disclosures latest +15
Tr
Worldwide 2023 Email Phishing Statistics and Examples 6 days, 15 hours ago | www.rssmix.com
beyond email email phishing email threats +14
Tr
Worldwide 2023 Email Phishing Statistics and Examples 6 days, 15 hours ago | www.rssmix.com
beyond email email phishing email threats +15
Tr
Behind the Great Wall: Void Arachne Targets Chinese-Speaking Users With the Winos 4.0 C&C Framework 1 week ago | www.rssmix.com
actor ai software campaign chinese +18
Tr
Not Just Another 100% Score: MITRE ENGENIUTY ATT&CK 1 week, 1 day ago | www.rssmix.com
actionable adversary alphv amp +30
Tr
Noodle RAT: Reviewing the New Backdoor Used by Chinese-Speaking Groups 2 weeks, 1 day ago | www.rssmix.com
analysis backdoor blog chinese +11
Tr
Commando Cat: A Novel Cryptojacking Attack Abusing Docker Remote API Servers 2 weeks, 6 days ago | www.rssmix.com
abusing api attack campaign +20
Tr
TargetCompany’s Linux Variant Targets ESXi Environments 3 weeks ago | www.rssmix.com
analysis blog delivery entry +11
Tr
A SANS's 2024 Threat-Hunting Survey Review 3 weeks, 1 day ago | www.rssmix.com
challenges global hunting landscape +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Vice President, Controls Design & Development-7

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Vice President, Controls Design & Development-5

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Data Scientist & AI Prompt Engineer

@ Varonis | Israel
View on infosec-jobs.com

Contractor

@ Birlasoft | INDIA - MUMBAI - BIRLASOFT OFFICE, IN
View on infosec-jobs.com