Modular trojan deployed via SQL injection attacks

26 June 2024

Numerous websites worldwide have been subjected to SQL injection attacks by newly-discovered threat actor Boolka deploying the modular BMANAGER trojan since 2022, reports The Hacker News. Intrusions involved the distribution of malicious JavaScript code that not only facilitates user input and interaction gathering and exfiltration but also redirects to a fake loading page luring targets to download the BMANAGER trojan downloader as a browser extension, according to a Group-IB analysis.

Source: SC Magazine

Date:

26 June 2024

Categorie(s):

NEWS

Tag(s):

Databases, IT, Modular, SQL, Threat Intelligence

Major Oilfield Supplier Hit by Ransomware Attack8 November 2024
The vCISO Academy: Transforming MSPs and MSSPs into Cybersecurity Powerhouses8 November 2024
Webinar: Learn How Storytelling Can Make Cybersecurity Training Fun and Effective8 November 2024
US consumer protection agency bans employee mobile calls amid Chinese hack fears8 November 2024
What if robots learned the same way genAI chatbots do?8 November 2024