Source |
The Hacker News |
Identifiant |
8295250 |
Date de publication |
2022-12-27 20:27:00 (vue: 2022-12-27 16:05:35) |
Titre |
BlueNoroff APT Hackers Using New Ways to Bypass Windows MotW Protection |
Texte |
BlueNoroff, a subcluster of the notorious Lazarus Group, has been observed adopting new techniques into its playbook that enable it to bypass Windows Mark of the Web (MotW) protections.
This includes the use of optical disk image (.ISO extension) and virtual hard disk (.VHD extension) file formats as part of a novel infection chain, Kaspersky disclosed in a report published today.
"BlueNoroff |
Envoyé |
Oui |
Condensat |
adopting apt been bluenoroff bypass chain disclosed disk enable extension file formats group hackers hard has image includes infection iso its kaspersky lazarus mark motw new notorious novel observed optical part playbook protection protections published report subcluster techniques today use using vhd virtual ways web windows |
Tags |
Medical
|
Stories |
APT 38
|
Notes |
★★★
|
Move |
|