Oh great, hackers found a new way to sneak malware into your computer

Channel:
United States YAŞAR@ARTAR
Subscribers:
32,700
Published on ● Video Link: https://www.youtube.com/watch?v=W3UerjLcTEM


Duration: 2:25
49 views
1

Oh great, hackers found a new way to sneak malware into your computer

Experts catch hackers using Windows event logs to hide malware.

Cybersecurity experts recently discovered a new technique for storing malware on an unsuspecting PC. Used by hackers, it involves slipping malware inside of Windows 11 event logs. To make matters worse, this new technique is designed to make the infection process nearly impossible to detect until it's too late.

Researchers at Kaspersky (thanks Bleeping Computer) analyzed a recent sample of the malware on a customer's computer in February of this year. During their analysis, they found that a hacker was able to plant fileless malware into a victim's file system by hiding it away in your Windows events logs. A first, according to Kaspersky.

This sophisticated attack injects shellcode payloads into Windows event logs into the KMS (Key Management Services) via a custom malware dropper and basically hides in plain sight.

The dropper then loads malicious code by taking advantage of a DLL exploit and hides itself as a copy of a legitimate error file. So, even if you check your event logs, it'll look like nothing out of the ordinary. The attacker can then install a Trojan virus (or, in this case, a number of Trojans), which will wreak havoc on a system.

Denis Legezo, lead security researcher at Kaspersky, told Bleeping Computer that “the actor behind the campaign is rather skilled by itself, or at least has a good set of quite profound commercial tools." The purpose of the attack is to obtain valuable user data.

Kaspersky never revealed who the company that was was hit by what it's calling a "targeted campaign." The victim of this attack, in this case, was tricked into downloading a RAR archive from a legitimate file sharing service. Once its downloaded, it secretly runs itself, and you're pretty much screwed.

So how do you defend yourself against an attack like this? You should continue to follow your company's cybersecurity best practices, like never clicking on suspicious links in emails and texts. Ensuring you know what you're downloading, and where it is from, before hitting open on any files or folders remains one of the best defenses we have against the dark hacking arts.



Other Videos By YAŞAR@ARTAR


2022-05-11Woman who had miscarriage sentenced to 30 years for murder in El Salvador
2022-05-10Citizen Sleeper Is An RPG On Xbox Game Pass That Deserves Your Attention
2022-05-10I’m a space scientist and I think I know where ALIENS might be living in our galaxy
2022-05-10UEFA: It is stated that the number of teams will be increased from 32 to 36 by 2024-2025.
2022-05-10Scientists find the most effective dating method
2022-05-10Tech giants have lost more than $1 trillion in value over the past three trading days
2022-05-10Meet the world's tallest dog: Zeus
2022-05-10Costa Rica declared national emergency after massive hack
2022-05-10NFT update is coming to Instagram
2022-05-10Record price for Andy Warhol's Marilyn Monroe portrait
2022-05-09Oh great, hackers found a new way to sneak malware into your computer
2022-05-09Apex Legends Season 13 release date, time, Saviours patch notes, Newcastle character, more
2022-05-09Avatar 2 trailer: First footage of The Way of Water released - WATCH
2022-05-09Elon Musk: Japan will disappear
2022-05-09Mars satellite captures image of giant ‘claw marks’ across Red Planet's surface
2022-05-09Nvidia's GPU mining limiter has been fully unlocked for the RTX 3080 Ti
2022-05-09Model Shanina Shaik is pregnant with her first child
2022-05-09Drawings more than 1000 years old found in Native American cave
2022-05-09For the first time in the world, CRISPR Prime Editing technology will be tested in SMA disease
2022-05-09It was stated that Elon Musk who bought Twitter plans to increase the company's revenue by 5 times.
2022-05-09Historic victory in Northern Ireland: Sinn Fein secures majority in parliament


Tags:
hackers found a new way to sneak malware into your computer
This sophisticated attack injects shellcode payloads into Windows
event logs into the KMS Key Management Services via a
custom malware dropper and basically hides in plain sight.
Denis Legezo lead security researcher at Kaspersky
told Bleeping Computer that the actor behind the
campaign is rather skilled by itself
or at least has a good set of quite profound commercial tools
The attacker can then install a Trojan virus