![]() Furthermore, best practice would be to uninstall the software. "For uninfected NoxPlayer users, do not download any updates until BigNox sends notification that they have mitigated the threat. Picture: BigNox, ZDNet A mysterious hacking group has compromised the server infrastructure of a well-liked Android emulator and has delivered malware to a handful of victims throughout Asia in a highly-targeted provide chain assault. Using this access, hackers tampered with the download URL of NoxPlayer updates in the API server to deliver malware to NoxPlayer users. "To be on the safe side, in case of intrusion, perform a standard reinstall from clean media," Sanmillan said. ESET says that based on evidence its researchers gathered, a threat actor compromised one of the company’s official API () and file-hosting servers (). ![]() Noting that the malware loaders used in the attack shared similarities with that of a compromise of Myanmar presidential office website in 2018 and a breach of a Hong Kong university last year, ESET said the operators behind the attack breached BigNox's infrastructure to host the malware, with evidence alluding to the fact that its API infrastructure could have been compromised. How to determine if I received a malicious update or not: check if any ongoing process has an active network connection with known active C&C servers, or see if any of the malware based on the file names we provided in the report is installed in: C:\ProgramData\Sandboxie\SbieIni.dat C:\ProgramData\Sandboxie\SbieDll. ![]() Join our insightful webinar! Join the Sessionįirst released in 2005, PoisonIvy RAT has been used in several high-profile malware campaigns, most notably in the 2011 compromise of RSA SecurID data. □ Mastering API Security: Understanding Your True Attack Surfaceĭiscover the untapped vulnerabilities in your API ecosystem and take proactive steps towards ironclad security. Spies target gamers with malware inserted into software updates, ESET says Its a supply-chain attack against a limited users of NoxPlayer, which allows people to play Android games on PCs and Macs.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |