Malvertising campaign deploys Oyster backdoor via trojanized software installers

26 June 2024

Intrusions involved luring targets to download a setup binary from legitimate-looking fraudulent websites that directly deploys the Oyster malware, marking a change from the previous usage of a dedicated loader for the payload, according to an analysis from Rapid7. Aside from executing the malware with host data exfiltration, command-and-control communication, and remote code execution capabilities, attacks also entailed the installation of legitimate Microsoft Teams software and a PowerShell script to evade detection and ensure persistence, respectively, researchers said.

Source: SC Magazine

Date:

26 June 2024

Categorie(s):

NEWS

Tag(s):

IT, Malvertising, Network Security, News, Oyster

Surfshark Black Friday Deals 2024 – Bigger Discounts and More Security18 November 2024
A week in security (November 11 – November 17)18 November 2024
Strela: A newcomer in Stealer Family18 November 2024
Incogni Black Friday Deal 2024: Unlock Ultimate Privacy18 November 2024
Surfshark One/Surfshark Antivirus Black Friday Deal 202418 November 2024