Windows CLFS and five exploits used by ransomware operators (Exploit #3 – October 2022)
2023-12-21 18:15:12 Author: securelist.com(查看原文) 阅读量:8 收藏

Reports

In this report Kaspersky researchers provide an analysis of the previously unknown HrServ web shell, which exhibits both APT and crimeware features and has likely been active since 2021.

Asian APT groups target various organizations from a multitude of regions and industries. We created this report to provide the cybersecurity community with the best-prepared intelligence data to effectively counteract Asian APT groups.

We unveil a Lazarus campaign exploiting security company products and examine its intricate connections with other campaigns

How Kaspersky researchers obtained all stages of the Operation Triangulation campaign targeting iPhones and iPads, including zero-day exploits, validators, TriangleDB implant and additional modules.


文章来源: https://securelist.com/windows-clfs-exploits-ransomware-october-2022/111591/
如有侵权请联系:admin#unsafe.sh