Ongoing international infostealer campaign involves CDN cache

24 April 2024

BleepingComputer reports that U.S., Germany, Japan, and UK systems have been subjected to ongoing attacks by suspected Vietnamese hacking group CoralRaider leveraging a content delivery network cache to facilitate the deployment of information-stealing payloads. Intrusions commence with the delivery of an archive with a malicious .LNK file, which when opened runs an HTML Application file retrieved from a CDN platform subdomain to avert detection, according to a Cisco Talos report.

Source: SC Magazine

Date:

24 April 2024

Categorie(s):

NEWS

Tag(s):

CDN, IT, News, Ransomware

Ransomware negotiator weighs in on the extortion payment debate with El Reg12 May 2024
Christie’s says $850m auctions to go ahead as planned despite cyberattack12 May 2024
How To Properly Secure SAP Fiori 12 May 2024
Hackers Moving To AI But Lacking Behind The Defenders In Adoption Rates12 May 2024
Week in review: Veeam fixes RCE flaw in backup management platform, Patch Tuesday forecast12 May 2024