ANEL and NOOPDOOR Backdoors Weaponized in New MirrorFace Campaign Against Japan

December 5, 2024 at 03:30AM The China-linked group MirrorFace has launched a spear-phishing campaign targeting individuals in Japan since June 2024, delivering backdoors NOOPDOOR and ANEL. This marks the return of ANEL, previously used by APT10. The attacks leverage malicious OneDrive links and various infection vectors, focusing on national security and international relations themes. ### … Read more

Hackers use PHP exploit to backdoor Windows systems with new malware

August 20, 2024 at 01:56PM Attackers deployed a new backdoor, Msupedge, on a Taiwan university’s Windows systems, possibly through a recently patched PHP vulnerability (CVE-2024-4577). Based on the meeting notes, it appears that unknown attackers have deployed a newly discovered backdoor called Msupedge on a university’s Windows systems in Taiwan, likely by exploiting a recently … Read more

Supply Chain Attack: Major Linux Distributions Impacted by XZ Utils Backdoor

April 1, 2024 at 10:06AM Multiple major Linux distributions have been hit by a supply chain attack through XZ Utils data compression library, resulting in a backdoor for unauthenticated access. The attack affects various Linux distributions, with tools available to detect the malicious library. Reverting to an untainted version of XZ Utils eliminates the threat, … Read more