all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers use Microsoft IIS web server logs to control malware

Add to bookmarks
Oct. 28, 2022, 10 a.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

The Cranefly hacking group, aka UNC3524, uses a previously unseen technique of controlling malware on infected devices via Microsoft Internet Information Services (IIS) web server logs. [...]

control hackers iis logs malware microsoft security server web web server

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

FBI warns against using unlicensed crypto transfer services 6 hours ago | www.bleepingcomputer.com
can crypto cryptocurrency down +13
LA County Health Services: Patients' data exposed in phishing attack 8 hours ago | www.bleepingcomputer.com
attack breach care data +21
Researchers sinkhole PlugX malware server with 2.5 million unique IPs 8 hours ago | www.bleepingcomputer.com
addresses command command and control connections +11
Reddit down in major outage blocking access to web, mobile apps 10 hours ago | www.bleepingcomputer.com
access apps blocking down +11
Over 1,400 CrushFTP servers vulnerable to actively exploited bug 11 hours ago | www.bleepingcomputer.com
actively exploited attacks bug critical +16
WP Automatic WordPress plugin hit by millions of SQL injection attacks 13 hours ago | www.bleepingcomputer.com
access accounts administrative privileges attacks +17
New Brokewell malware takes over Android devices, steals data 17 hours ago | www.bleepingcomputer.com
android android banking trojan android devices applications +18
US charges Samourai cryptomixer founders for laundering $100 million 1 day, 7 hours ago | www.bleepingcomputer.com
charged charges criminal cryptocurrency +12
Maximum severity Flowmon bug has a public exploit, patch now 1 day, 7 hours ago | www.bleepingcomputer.com
bug code concept exploit +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs