Security News > 2023 > November > Russian hackers use Ngrok feature and WinRAR exploit to attack embassies
2023-11-19 16:14
NDSC says that the Russian hackers used a Ngrok free static domain to access the command and control server hosted on their Ngrok instance.
A report from Google in October notes that the security issue was exploited by Russian and Chinese state hackers to steal credentials and other sensitive data, as well as to establish persistence on target systems.
FSB arrests Russian hackers working for Ukrainian cyber forces.
North Korean hackers exploit critical TeamCity flaw to breach networks.
Google links WinRAR exploitation to Russian, Chinese state hackers.
Russian Sandworm hackers breached 11 Ukrainian telcos since May. Fake WinRAR proof-of-concept exploit drops VenomRAT malware.
News URL
Related news
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Chinese Hackers Exploit MAVInject.exe to Evade Detection in Targeted Cyber Attacks (source)
- Malware botnets exploit outdated D-Link routers in recent attacks (source)
- Hackers exploit Four-Faith router flaw to open reverse shells (source)
- Chinese hackers targeted sanctions office in Treasury attack (source)
- New DoubleClickjacking attack exploits double-clicks to hijack accounts (source)
- Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks (source)
- Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens (source)
- Russian ISP confirms Ukrainian hackers "destroyed" its network (source)
- New Web3 attack exploits transaction simulations to steal crypto (source)