all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Genesis Market Malware Attack

Add to bookmarks
May 23, 2024, 4:58 a.m. |

FortiGuard Labs | FortiGuard Center - Threat Signal Report fortiguard.fortinet.com

What is the attack?The FortiGuard Lab’s EDR team recently identified malware infection exhibiting strong similarities to the previously reported Genesis Market malicious campaign that was dismantled by law enforcement in early 2023. The investigation traced some initial compromises to tools used for circumventing software licensing and counterfeit GPG MSI installers embedded with PowerShell scripts. Following the initial infection, the malware deploys a victim-specific DLL into the machine's memory. This malware targets Edge, Chrome, Brave, and Opera browsers by installing a …

attack campaign counterfeit dismantled edr embedded enforcement fortiguard genesis genesis market gpg infection investigation lab law law enforcement licensing malicious malware malware attack malware infection market msi powershell powershell scripts scripts software team tools what is

Visit resource

More from fortiguard.fortinet.com / FortiGuard Labs | FortiGuard Center - Threat Signal Report

Polyfill.io Supply Chain Attack 28 minutes ago | fortiguard.fortinet.com
attack browser can capabilities +12
Brain Cipher Ransomware Attack 3 days, 21 hours ago | fortiguard.fortinet.com
airport attack brain centers +21
CPrime Supply Chain Attack 1 week, 4 days ago | fortiguard.fortinet.com
Oracle WebLogic Server Vulnerabilities (CVE-2023-21839, CVE-2017-3506) 3 weeks, 6 days ago | fortiguard.fortinet.com
8220 gang actor attack catalog +28
Check Point Quantum Security Gateways Information Disclosure Vulnerability (CVE-2024-24919) 1 month ago | fortiguard.fortinet.com
NextGen Healthcare Mirth Connect RCE (CVE-2023-43208, CVE-2023-37679) 1 month ago | fortiguard.fortinet.com
code code execution command command injection +29
Genesis Market Malware Attack 1 month, 1 week ago | fortiguard.fortinet.com
attack campaign counterfeit dismantled +26
Google Chromium in Visuals Use-After-Free Vulnerability (CVE-2024-4671) 1 month, 2 weeks ago | fortiguard.fortinet.com
browser can chrome chromium +15
GitLab Password Reset Vulnerability (CVE-2023-7028) 1 month, 3 weeks ago | fortiguard.fortinet.com
account administrator attacker cisa +23

Jobs in InfoSec / Cybersecurity

Find Talent

Ground Systems Engineer - Evolved Strategic SATCOM (ESS)

@ The Aerospace Corporation | Los Angeles AFB
View on infosec-jobs.com

Policy and Program Analyst

@ Obsidian Solutions Group | Rosslyn, VA, US
View on infosec-jobs.com

Principal Network Engineering

@ CVS Health | Work At Home-California
View on infosec-jobs.com

Lead Software Engineer

@ Rapid7 | NIS Belfast
View on infosec-jobs.com

Software Engineer II - Java

@ Rapid7 | NIS Belfast
View on infosec-jobs.com

Senior Software Engineer

@ Rapid7 | NIS Belfast
View on infosec-jobs.com