DigitalCIO
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
No Result
View All Result
DigitalCIO
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
No Result
View All Result
Digitalcio
No Result
View All Result
Home Tech News

Lazarus threat group’s new campaign targets Windows and MacOS systems

DigitalCIO Bureau by DigitalCIO Bureau
March 28, 2019
in Tech News
0
74
SHARES
1.2k
VIEWS
Share on FacebookShare on Twitter

Source: Cyware | By Ryan Stewart

• Lazarus threat group’s new operation utilizes PowerShell to target Windows and MacOS systems.
• This operation is a part of the Operation AppleJeus and is ongoing since November 2018.

What is the issue – Researchers from Kaspersky observed Lazarus threat group’s new operation that utilizes PowerShell to target Windows and MacOS systems.

Why it matters – Researchers noted that the threat group’s new operation is a part of the Operation AppleJeus and is ongoing since November 2018.

The big picture
The threat group’s ongoing operation targets the staff of cryptocurrency exchanges with malicious documents that would download and install either Windows or Mac malware.

• The threat group’s custom PowerShell script communicates with the malicious C&C server and executes commands.
• Once the malware establishes a connection with the C&C server, it can upload/download files, gather host information, execute system shell command, and set sleep time.
• The malware is also capable of checking malware status, displaying current malware configuration, updating malware configuration, and exiting the malware.

Worth noting – Lazarus threat group uses various techniques to run its C&C servers such as purchasing new servers, using hacked servers, using old vulnerable servers etc.

According to server response headers, Lazarus threat group is running two different C&C servers.

• One C&C server is an old vulnerable instance of Internet Information Services (IIS) 6.0 on Microsoft Windows Server 2003.
• The other C&C server is a purchased instance from a hosting company and is currently used to host macOS and Windows payloads.
• The geography of the servers varies from China to the European Union.

“We’d therefore like to ask Windows and macOS users to be more cautious and not fall victim to Lazarus. If you’re part of the booming cryptocurrency or technological startup industry, exercise extra caution when dealing with new third parties or installing software on your systems,” researchers wrote in a blog.

Share30Tweet19
DigitalCIO Bureau

DigitalCIO Bureau

Recommended For You

CrowdStrike Acquires Application Security Management Startup Bionic

by DigitalCIO Bureau
September 22, 2023
0
CRISIL To Acquire Bridge To India Energy

CrowdStrike has announced it has agreed to acquire Bionic, the pioneer of Application Security Posture Management (ASPM). The combination will extend CrowdStrike’s leading Cloud Native Application Protection Platform...

Read more

Generative AI Technologies to Execute 60% of Seller Work Within Five Years

by DigitalCIO Bureau
September 22, 2023
0
Generative AI Technologies to Execute 60% of Seller Work  Within Five Years

By 2028, 60% of B2B seller work will be executed through conversational user interfaces via generative AI sales technologies, up from less than 5% in 2023, according to...

Read more

CtrlS Datacenters Appoints Mohit Pande as Chief Financial Officer

by DigitalCIO Bureau
September 22, 2023
0
CtrlS Datacenters Appoints Mohit Pande as Chief Financial Officer

CtrlS Datacenters has announced the appointment of Mohit Pande as its Chief Financial Officer (CFO). The appointment will strengthen the leadership team with Mohit’s 23-year experience in the...

Read more

Black Box Laucnhes Its New Center of Excellence

by DigitalCIO Bureau
September 22, 2023
0
Black Box Laucnhes Its New Center of Excellence

Black Box Limited (formerly AGC Networks Limited)  has announced the inauguration of its new Center of Excellence located in Bengaluru, India. Black Box is one of Essar’s key...

Read more

Attackers Misusing Email Inbox Rules

by DigitalCIO Bureau
September 22, 2023
0
Attackers Misusing Email Inbox Rules

Barracuda has unveiled a new Threat Spotlight, that shows how attackers can misuse inbox rules in a successfully compromised account to evade detection while they – among other things –...

Read more
Next Post

Accenture has good news for the whole of IT

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Related News

Mozilla launches CSS Flexbox inspector

January 17, 2019
Vertiv Launches Active Harmonic Filters in India

Vertiv Launches Active Harmonic Filters in India

September 4, 2023

IBM Opens New Labs for Cracking ATMs, IoT Devices

August 7, 2018

Browse by Category

  • Appointment
  • Archive
  • Artificial Intelligence
  • CIO Interviews
  • Cloud
  • Datacenter
  • Events and Conferences
  • Market Insights
  • News
  • Opinion and Analysis
  • Resources
  • Security
  • Storage
  • Tech News
Digitalcio

Welcome to DigitalCIO, your ultimate source for staying ahead in the ever-evolving world of technology and business.

CATEGORIES

  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
  • Archive

BROWSE BY TAG

Acquisition AI AIOps Appointment artificial intelligence Artificial Intelligence and Machine Learning Big Data and Analytics Blockchain CISCO Cloud Computing Cloudflare CommScope CrowdStrike Customer Experience Cybersecurity Deloitte Digital Transformation E-books ESG Everest Group Gartner Generative AI IDC Infographics Infosys Internet of Things (IoT) Nessus Expert Netskope New Relic Nextiva o9 Solutions Oracle Panel Discussion Public cloud ransomware Redington Limited Salesforce software Sophos Sustainability Tenable Veeam Software Webinars WeWork India Whitepaper

NAVIGATION

  • Home
  • About Us
  • Advertise with Us
  • Contact Us

© 2023 digitalcio.in - All rights reserved.

No Result
View All Result
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources

© 2023 digitalcio.in - All rights reserved.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?