Malicious IIS Extensions Gaining Popularity Among Cyber Criminals for Persistent Access

27 July 2022

Threat actors are increasingly abusing Internet Information Services (IIS) extensions to backdoor servers as a means of establishing a “durable persistence mechanism.” That’s according to a new warning from the Microsoft 365 Defender Research Team, which said that “IIS backdoors are also harder to detect since they mostly reside in the same directories as legitimate modules used by target applications, and they follow the same code structure as clean modules.”

Read full article on The Hacker News

Date:

27 July 2022

Categorie(s):

NEWS

Tag(s):

Access, Extensions, IIS, Kaspersky, Malicious

Ransom recovery costs reach $2.73 million3 May 2024
Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks3 May 2024
Indonesia sneakily buys spyware, claims Amnesty International3 May 2024
Most companies changed their cybersecurity strategy in the past year3 May 2024
What is cybersecurity mesh architecture (CSMA)?3 May 2024