Security News > 2020 > November > Revamped DLL side-load attack hits Myanmar

Revamped DLL side-load attack hits Myanmar
2020-11-05 02:02

Security vendor Sophos has suggested Chinese purveyors of advanced persistent threats are behind a recent wave of attacks on non-governmental organisations and other commercial entities in Myanmar.

The attack, which Sophos has given the charming moniker "KilllSomeOne", is a DLL side-loading attack that tricks Windows executables into loading a malicious DLL instead of a real one.

The security vendor rated the attack as a "Different spin" on previous DLL side-loading attacks so worth knowing about to stay on top of such threats.

The company did not address why a Chinese gang would go to the trouble of tweaking an attack to hassle institutions in Myanmar, a nation only recently emerged from years of rule by a military junta and ranked as the planet's 67th or 68th largest economy.

One of the reasons China courts Myanmar is that the latter nation has a coast on the Bay of Bengal.


News URL

https://go.theregister.com/feed/www.theregister.com/2020/11/05/killsomeone_dll_attack/