The Latest in IT Security

Travle aka PYLOT backdoor hits Russian-speaking targets

19
Dec
2017

abstract_130989658-990x400

At the end of September, Palo Alto released a report on Unit42 activity where they – among other things – talked about PYLOT malware. We have been detecting attacks that have employed the use of this backdoor since at least 2015 and refer to it as Travle.

Coincidentally, KL was recently involved in an investigation of a successful attack where Travle was detected, during which we conducted a deep analysis of this malware. So, with this intelligence ready we are sharing our findings in this blog to supplement Palo Alto’s research with additional details.

Related posts:
  1. Skype targeted by T9000 backdoor trojan
  2. AppBuyer iOS Malware Targets Jailbroken iPhones
  3. Backdoor Disguised as Java Server Page Targets Web-hosting Servers
  4. Cybersecurity Company Palo Alto Networks Acquires Morta Security
  5. Palo Alto Networks Completes Acquisition of Israeli Company Cyvera

Read More

Tags:  
Written by Securelist
0 Comments

Leave a reply


Categories

MONDAY, FEBRUARY 24, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments