all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Server-based polymorphism leveraged in new SideWinder APT attacks

Add to bookmarks
May 11, 2023, 3:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Suspected Indian state-backed advanced persistent threat operation SideWinder also known as APT-C-17, T-APT-4, APT-Q-39, Rattlesnake, Hardcore Nationalist, and Razor Tiger has been utilizing server-based polymorphism to facilitate next-stage backdoor delivery in a cyberattack campaign that initially targeted Pakistan government entities in late November before setting sights on Turkey beginning in March, reports The Hacker News.


Article Link: Server-based polymorphism leveraged in new SideWinder APT attacks | SC Media


1 post - 1 participant


Read full topic

advanced advanced persistent threat apt attacks backdoor campaign cyberattack delivery entities government march november pakistan persistent persistent threat polymorphism rattlesnake razor reports server sidewinder stage state threat turkey

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

ISC Stormcast For Wednesday, May 8th, 2024 https://isc.sans.edu/podcastdetail/8972, (Wed, May 8th) 28 minutes ago | malware.news
topic
RSAC SW Live Stream 3 hours ago | malware.news
topic
CHM Malware Stealing User Information Being Distributed in Korea 5 hours ago | malware.news
ahnlab asec center change +13
Case of Malware Distribution Linking to Illegal Gambling Website Targeting Korean Web Server 5 hours ago | malware.news
actor ahnlab asec case +31
Detecting XFinity/Comcast DNS Spoofing, (Mon, May 6th) 5 hours ago | malware.news
access advertisements article block +14
RemcosRAT Distributed Using Steganography 5 hours ago | malware.news
ahnlab asec attacks center +24
Debugging WinDbg with Binary Ninja For Fun and Profit 6 hours ago | malware.news
api binary binary ninja code +14
RSAC 2024: Outfoxing SSO: Bypassing modern authentication 6 hours ago | malware.news
abuse adversary article authentication +17
CVE-2024-3661, a.k.a. TunnelVision, Exposes a VPN Bypass Vulnerability 8 hours ago | malware.news
attackers bypass bypass vulnerability can +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Problem Manager

@ Deutsche Bank | Bucharest
View on infosec-jobs.com

Information System Security Officer

@ Booz Allen Hamilton | USA, VA, Chantilly (15009 Conference Ctr Dr)
View on infosec-jobs.com

Senior Account Executive - Cybersecurity

@ OpenText | Virtual, CA
View on infosec-jobs.com

Grants Compliance Senior Specialist

@ Plan International | Bamako, Mali
View on infosec-jobs.com

Sr. Cybersecurity Engineer- Tenable

@ phia, LLC | Arlington, VA
View on infosec-jobs.com

Portfolio Manager- Enterprise Information Security Auditing

@ American Chemical Society | Columbus, OH, US, 43202
View on infosec-jobs.com
View more jobs