Android Century
  • Home
  • Android Zone
    • Android Apps
    • Android Games
    • Apps APk Files
    • Games Apk Files
    • Apps Hack Tricks
  • Reviews
  • Fantasy Zone
    • Entertainment
    • Quotes and Status
    • Life Style
    • Home Made Tips
    • Hair Care
    • Skin Care
    • Fantasy Tips
  • Tricks
    • Free Recharge
    • Free Internet
    • shopping Cashback
    • Recharge Cashback
  • Tech
  • Mobiles
  • Gadgets
  • News
  • How To's
  • Software
Breaking
Loading...

Featured post

How to Take Great Photos With Apple's iPhone X

Recent Posts

Labels

  • Android Apk Files
  • Android Apps
  • Android Games
  • Apps Apk Files
  • Entertainment
  • Fantasy Tips
  • Gadgets
  • Hair Care
  • HomeMade Tips
  • How To's
  • News
  • Quotes
  • Quotes & Status
  • Recharge Cashback
  • Recharge Promo Codes
  • Shopping Cashback
  • Technology
  • skin care
Home / News / Open-supply builders focused in state-of-the-art malware attack

Open-supply builders focused in state-of-the-art malware attack

Latest Govt. Jobs 21:41:00 News Edit
Developers are valuable targets for cyberspies.

For the past few months, developers who publish their code on GitHub have been targeted in an attack campaign that uses a little-known but potent cyberespionage malware.
The attacks started in January and consisted of malicious emails specifically crafted to attract the attention of developers, such as requests for help with development projects and offers of payment for custom programming jobs.
The emails had .gz attachments that contained Word documents with malicious macro code attached. If allowed to execute, the macro code executed a PowerShell script that reached out to a remote server and downloaded a malware program known as Dimnie.
According to researchers from Palo Alto Networks, Dimnie has been around since at least 2014, but has flown under the radar until now because it primarily targeted users from Russia.
The malware uses some stealthy techniques to make its malicious traffic blend into normal user activity. It generates requests that appear to be directed to Google-owned domain names, but which in reality are sent to an attacker-controlled IP address.
Dimnie is able to download additional malicious modules that are injected directly into the memory of legitimate Windows processes. These modules leave no traces on disk, which makes their detection and analysis more complicated, the Palo Alto researchers said in a blog post.
There are separate modules for keylogging, screen grabbing, interacting with smartcards attached to the computer and more. There is even a self-destruct module that wipes all files from the system drive in order to destroy traces of the malware’s presence.
Data stolen from an infected computer is encrypted and appended to image headers in an attempt to bypass intrusion prevention systems.
Even though Palo Alto Networks did not attribute these attacks to a particular group, the malware bears striking similarities to other recent attacks that are suspected of being state-sponsored: the use of documents with malicious macros, the use of PowerShell, the loading of malicious code directly in memory, the use of stealthy command-and-control channels and data exfiltration techniques, highly targeted phishing campaigns and more.
Developers can be valuable targets for cyberespionage. Their computers often hold proprietary information and access credentials for their employers’ networks and systems.
The Yahoo breach that resulted in hackers gaining access to the accounts of 500 million users started with a semi-privileged employee falling for a spear-phishing email.
The Dimnie attack campaign seems to have specifically targeted developers who are present on GitHub, a free source code hosting service. This category also includes developers who work for large companies and who publish personal open source projects in their spare time.
In a response to a report about these emails in January, Gervase Markham, who works as a policy engineer at Mozilla, said that he received several such messages to an email address that he only used on Github. This made him believe that the targeting might have been automated.
With access to source code repositories and distribution servers attackers can inject backdoors into software projects or turn the compiled binaries into Trojan horses. This has happened several times in the past. For example, the macOS version of the Transmission BitTorrent client hosted on the project’s official website was found to contain malware on two separate occasions.
Share on Facebook Share on Twitter Share on Google Plus

RELATED POSTS


Xiaomi Redmi 5 with 18:9 display

Vivo V9 with dual rear cameras

Xiaomi Redmi 5 launch
Open-supply builders focused in state-of-the-art malware attack Open-supply builders focused in state-of-the-art malware attack Reviewed by Latest Govt. Jobs on 21:41:00 Rating: 5

0 comments:

Post a Comment

Newer Post Older Post Home
Subscribe to: Post Comments ( Atom )

Search This Blog

TEST BOOK FOR GOVT ENTRANCE TEST

TEST BOOK FOR GOVT ENTRANCE TEST
Find All Latest book for preparation of SSC,RAILWAYBANK PO,RBI,BANK CLERK,GATE ME,GATE CE are available here in less prices, to check out the books click here

Translate

  • Popular Post
  • Random posts
  • Category

Popular Posts

  • Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Refer & Earn Offer:  Hey Guys! Today I make an article about Teen Patti Referral ...
  • Tinyowl Freecharge Offer – Get 15% Cashback + extra 25% cashback using Freecharge [Ultimatez Tricks]
    Tinyowl Freecharge Offer – Freecharge is now offering 25% cashback on Tinyowl food orders paid via ...
  • Infocus Vision 3 review
    What happens when you hear about a smartphone that is priced below Rs 7,000 but comes with two ...
  • How to Gain Root Access of An Android Device via KingoRoot Software
    What Does Root Access Mean? Gaining root access of Android is the process of modifying the ...
  • How to Disable Your Mac’s Touchpad When Another Mouse Is Connected
    Laptop trackpads can be annoying. Your palm hits them while you’re typing, moving your cursor ...
  • 11 things you should understand approximately iOS 11
    Apple introduced the following version of its running system for the iPhone and iPad, iOS eleven ...

Random Posts

  • How to Find the Best iOS App Deals
    How to Find the Best iOS App Deals
    07.01.2017 - 0 Comments
    anyone loves a good cut price whilst shopping for stuff and maximum people take a look at diverse websites…
  • Top 5 Most Played EA Games for Android Phones
    Top 5 Most Played EA Games for Android Phones
    25.02.2016 - 0 Comments
    Top 5 Most Played EA Games for Android Phones: Are you love to play EA games on your smartphones, if yes…
  • KingRoot 4.8.1 (136) APK Download [GoAndroidAuthority.Com]
    KingRoot 4.8.1 (136) APK Download [GoAndroidAuthority.Com]
    24.03.2016 - 0 Comments
    In Tools by Developer KingRoot Studio(4.x/5 average rating on Google Play…
  • Top  best free personal finance software of 2017
    Top best free personal finance software of 2017
    01.03.2017 - 0 Comments
    Free personal finance software Thinking about personal finance may not excite you, but it…
  • How Do You Disable a Computer’s Hard Drive LED Light?
    How Do You Disable a Computer’s Hard Drive LED Light?
    15.03.2017 - 0 Comments
    When you are busy working on your laptop, the last thing you need is a constantly flickering hard drive…

Labels

Android Apk Files Android Apps Android Games Apps Apk Files Apps Hack Tricks Entertainment Free Internet Freecharge Gadgets Games Apk Files How To's Laptops Guide Mobiles Reviews Technology Viral's android zone free recharge

Entertainment

Tricks

Popular Posts

  • Infocus Vision 3 review
    What happens when ...
  • (no title)
    ...
  • How to Remove Malware and Adware From Your Mac
    Yes, Macs can ...
  • Tinyowl Freecharge Offer – Get 15% Cashback + extra 25% cashback using Freecharge [Ultimatez Tricks]
    Tinyowl Freecharge ...
  • The N64 controller is the most important of all time
    Whenever ...
  • Moto G5 & Moto G5 Plus MASSIVE Leak: Infographics, Specs & Photos
    Lenovo's ...
  • Shadow of War's director of technical art talks Project Scorpio
    The biggest ...

Random Posts

  • Samsung Galaxy A8 Plus (2018) India launch on January 10
    Samsung Galaxy A8 Plus (2018) India launch on January 10
    16.01.2018 - 0 Comments
    Samsung Galaxy A8+ (2018) India launch is expected on January 10, and the South Korean major has…
  • UPCOMING MOBILES (WILEYFOX SWIFT 2 PLUS)
    UPCOMING MOBILES (WILEYFOX SWIFT 2 PLUS)
    09.11.2016 - 0 Comments
    SUMMARY The Wileyfox Swift 2 Plus mobile features a display and has 2700 mAh battery and weighs…
  • Microsoft unveils a bonanza of security capabilities
    Microsoft unveils a bonanza of security capabilities
    14.02.2017 - 0 Comments
    Companies concerned about cybersecurity have a fleet of new Microsoft tools coming their way. The company…
  • Google starts taking payments for apps via Kenya's M-Pesa
    Google starts taking payments for apps via Kenya's M-Pesa
    24.02.2018 - 0 Comments
    NAIROBI: Google Play apps and games store has started accepting payments in Kenya through Safaricom's…
  • How to customize icons with icon packs
    How to customize icons with icon packs
    13.02.2017 - 0 Comments
    Your phone's home screen can get as wild or tame as you want with these customizations. Compared to…

Most Popular

  • Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Offer 2018: Refer and Earn Flipkart Vouchers Free
    Teen Patti Refer & ...
  • SAMSUNG GALAXY J7 (2016) REVIEWS
    SAMSUNG GALAXY J7 (2016) REVIEWS
    SAMSUNG GALAXY J ...
  • Top 5 Best SmartPhones under 7000 Rs (March 2017)
    Looking for the ...
  • Apple, IBM, Cisco are huge because of Indians, do not deny them H-1B visa: RBI Governor Urjit Patel
    ...
  • SAMSUNG GALAXY J7 (2016) Specifications
    SAMSUNG GALAXY J ...
  • BlackBerry Teases Marshmallow Beta Testing for Priv by Next Week
    Blackberry ...
  • LG Q6 Review
    LG Q6 Review
    2017 is ...

Contact Form

Name

Email *

Message *

Offers Zone

Created By Android Century Distributed by Android Century
  • Home
  • About us
  • Contact us
  • Privacy policy
  • Terms of use
  • Advertise here
Subscribe Via Email Subscribe To Android Century By Email And Get Free Updates. ;-)


Your email address is safe with us!