all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Redline Dropped Through MSIX Package, (Wed, Nov 15th)

Add to bookmarks
Nov. 15, 2023, 8:20 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

The MSIX package file format has been in the light for a few weeks. The GHOSTPULSE[1] malware has been identified to bypass many security controls delivered through an MSIX package. Like many operating systems, Windows can install applications by executing an executable (often called “setup.exe”), but packages are also available. Think about the well-known “.deb” for Debian/Ubuntu or “.rpm” for RedHat/CentOS. In the Windows eco-system, packages have the “.msi” extension. They have been used to deliver malware for a while …

applications bypass called controls file install malware msix nov operating systems package packages redline security security controls systems windows

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

AI: The new puppet master behind cyberattacks 29 minutes ago | malware.news
article attacks awareness awareness training +15
Prophetic Post by Intern on CVE-2023-1389 Foreshadows Mirai Botnet Expansion Today, (Thu, Nov 30th) 3 hours ago | malware.news
botnet cve cve-2023-1389 detections +18
ISC Stormcast For Thursday, November 30th, 2023 https://isc.sans.edu/podcastdetail/8758, (Thu, Nov 30th) 4 hours ago | malware.news
topic
Sysdig Achieves the Amazon EKS Ready Designation 6 hours ago | malware.news
amazon amazon eks amazon web services application +21
Kimsuky Targets South Korean Research Institutes with Fake Import Declaration 7 hours ago | malware.news
actor ahnlab asec backdoor +24
Personal Information Sales Used as Bait to Distribute Malware 7 hours ago | malware.news
actor ahnlab asec attack +20
2023-11-20 - DarkGate infection 7 hours ago | malware.news
analysis article darkgate infection +6
2023-11-22 - AgentTesla infection with FTP data exfil 7 hours ago | malware.news
agenttesla analysis article data +9
2023-11-06 - 404 TDS --> Unidentified malware --> Cobalt Strike 7 hours ago | malware.news
analysis article cobalt cobalt strike +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Paid internship - Cybersecurity [BGSW]

@ Bosch Group | Warszawa, Poland
View on infosec-jobs.com

Cybersecurity Officer

@ People In Need | Prague 2, Prague, Czechia
View on infosec-jobs.com

University -Cybersecurity Consultant

@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
View on infosec-jobs.com

Senior Security Engineer, Detection Engineering

@ Lyft | Seattle, WA
View on infosec-jobs.com

Architecte de la sécurité des applications / Application Security Architect

@ Genetec | Montreal, Quebec, Canada
View on infosec-jobs.com

Telecommunications Sector| SIEM Engineer

@ Devoteam | Lisbon, Portugal
View on infosec-jobs.com
View more jobs