One Article Review
| Source |  CSO |
|---|---|
| Identifiant | 5956020 |
| Date de publication | 2022-07-26 13:16:00 (vue: 2022-07-26 21:05:35) |
| Titre | New Facebook malware targets business accounts |
| Texte | Helsinki-based cybersecurity vendor WithSecure (formerly F-Secure Business) says it has discovered an operation, dubbed “DUCKTAIL,” that uses social media-based spear phishing attacks to gain access to Facebook Business accounts.The company said that it has “high confidence” that a Vietnamese threat actor is behind the attacks, which aim malicious messages at LinkedIn users who are likely to have admin access to their companies' Facebook accounts. The threat actor also targets email addresses of potential victims directly.What makes the attack unique, according to WithSecure, is the infostealer malware component, which is designed specifically to gain access to Facebook Business accounts. Previous attacks targeting Facebook did not target Facebook Business accounts in particular. If a victim can be induced to open a malicious link, the malware scans the infected computer for browsers and extracts cookies that indicate authenticated Facebook sessions for use in gaining access to those accounts. Command and control is handled via the Telegram messaging service, using the Telegram Bot system, and private data is also sent back to the hacker in this way.To read this article in full, please click here |
| Envoyé | Oui |
| Condensat | access according accounts actor addresses admin aim also are article attack attacks authenticated back based behind bot browsers business can click command companies company component computer confidence” control cookies cybersecurity data designed did directly discovered dubbed email extracts facebook formerly full gain gaining hacker handled has have helsinki here indicate induced infected infostealer likely link linkedin makes malicious malware media messages messaging new not open operation particular phishing please potential previous private read said says scans secure sent service sessions social spear specifically system target targeting targets telegram those threat unique use users uses using vendor victim victims vietnamese way what which who withsecure “ducktail “high |
| Tags | Malware Threat |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.