Posts Tagged ‘payload’

Chemical Attack in Syria Used as Enticement in Targeted Attack

Sep

2013

Targeted attacks are a daily occurrence and attackers are fast to employ the latest news stories in their social engineering themes. In a recent targeted attack, delivering a payload of Backdoor.Korplug and caught by our Symantec.cloud services, we observed an attacker taking advantage of a recently published article by the Washington Post in relation to […]

Category General Written by Symantec Security Response Blog 0 Comments

NetTraveler Is Back: The ‘Red Star’ APT Returns With New Tricks

Sep

2013

NetTraveler, which we described in depth in a previous post, is an APT that infected hundreds of high profile victims in more than 40 countries. Known targets of NetTraveler (also known as ?Travnet? or ?Netfile?) include Tibetan/Uyghur activists, oil industry companies, scientific research centers and institutes, universities, private companies, governments and governmental institutions, embassies and […]

Category General Written by Securelist / Blog 0 Comments

The Powerloader 64-bit update based on leaked exploits

Aug

2013

A few months ago on this blog I described PowerLoader functionality including an interesting way for privilege escalation into the explorer.exe system process. The leaked PowerLoader code is also used in other malware families. For example the Win32/Gapz dropper is based on leaked PowerLoader code. In August 2013 we have tracked a new modification of […]

Category General Written by We Live Security 0 Comments

The Latest in IT Security

Posts Tagged ‘payload’

NetTraveler Is Back: The ‘Red Star’ APT Returns With New Tricks

The Powerloader 64-bit update based on leaked exploits

Categories

Featured

Archives

Latest Comments

About Us

Contact Us