Security News > 2024 > June > Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor
2024-06-17 06:28
Legitimate-but-compromised websites are being used as a conduit to deliver a Windows backdoor dubbed BadSpace under the guise of fake browser updates. "The threat actor employs a multi-stage attack chain involving an infected website, a command-and-control (C2) server, in some cases a fake browser update, and a JScript downloader to deploy a backdoor into the victim's system," German
News URL
https://thehackernews.com/2024/06/hackers-exploit-legitimate-websites-to.html
Related news
- Iranian hackers pose as journalists to push backdoor malware (source)
- Hackers exploit LiteSpeed Cache flaw to create WordPress admins (source)
- Helsinki suffers data breach after hackers exploit unpatched flaw (source)
- Kimsuky hackers deploy new Linux backdoor via trojanized installers (source)
- Kimsuky hackers deploy new Linux backdoor in attacks on South Korea (source)
- North Korean Hackers Exploit Facebook Messenger in Targeted Malware Campaign (source)
- Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking (source)
- Hackers Exploit Legitimate Packer Software to Spread Malware Undetected (source)
- Hackers exploit 2018 ThinkPHP flaws to install ‘Dama’ web shells (source)
- New Warmcookie Windows backdoor pushed via fake job offers (source)