all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers Compromised TeamCity Server To Install BianLian’s GO Backdoor

Add to bookmarks
March 12, 2024, 2:32 a.m. | Balaji

GBHackers On Security gbhackers.com

BianLian attackers exploited a TeamCity vulnerability (CVE-2024-27198 or CVE-2023-42793) to gain initial access and move laterally within the network.  They deployed a PowerShell backdoor disguised as legitimate tools that use two-layer obfuscation with encryption and string substitution to communicate with a Command and Control (C2) server.  Researchers at Guidepoint Security linked this backdoor to the […]


The post Hackers Compromised TeamCity Server To Install BianLian’s GO Backdoor appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News …

access attackers backdoor bianlian command command and control compromised control cve cve-2024-27198 cyber-attack cyber security disguised encryption exploited guidepoint guidepoint security hackers initial access install malware network obfuscation powershell powershell backdoor researchers security server teamcity tools vulnerability

Visit resource

More from gbhackers.com / GBHackers On Security

Threat Actors Attacking MS-SQL Servers to Deploy Ransomware 2 hours ago | gbhackers.com
attackers attacks campaign coinminer +26
REvil Ransomware Affiliate Sentenced for 13 Years in Prison 4 hours ago | gbhackers.com
affiliate attacks cyber cyber security +12
USB Malware Attacks Targeting Industrial Systems Adapts LOL Tactics 4 hours ago | gbhackers.com
attacks cyber security detections devices +21
Attention all Windows Users! The Microsoft April Security Update Could Break Your VPN 5 hours ago | gbhackers.com
administrators april attention caught +13
Panda Restaurant Corporate Systems Hacked: Customer Data Exposed 8 hours ago | gbhackers.com
breach compromised corporate corporate data +25
Google Guide! How to Detect Browser Data Theft Using Windows Event Logs 1 day, 2 hours ago | gbhackers.com
blog blog post browser chrome +22
Millions of Malicious “Imageless” Docker Hub Repositories Drop Malware 1 day, 3 hours ago | gbhackers.com
attackers cybercriminals cyber security docker +15
Attackers Leverage Sidecar Container Injection Technique To Stay Stealthy 1 day, 5 hours ago | gbhackers.com
app application attackers cloud +20
How to Utilize Azure Logs to Identify Threats: Insights From Microsoft 1 day, 7 hours ago | gbhackers.com
azure businesses cyber security effectively +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02
View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia
View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium
View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India
View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)
View on infosec-jobs.com
View more jobs