The threat actor known as ChamelGang has been observed using a previously undocumented implant to backdoor Linux systems, marking a new expansion of the threat actor's capabilities.
The malware, dubbed ChamelDoH by Stairwell, is a C++-based tool for communicating via DNS-over-HTTPS (DoH) tunneling.
ChamelGang was first outed by Russian cybersecurity firm Positive Technologies in September 2021,
Support here
Popular posts from this blog
- Top 10 Deep Web and Dark Web Forums
- Wireshark 4.4.5 Released, (Sun, Mar 2nd)
- Ghidra Tip 0x01: Cursor Text Highlighting
- Collide+Power, Downfall, and Inception: New Side-Channel Attacks Affecting Modern CPUs
- 12 members of an Irish high-risk criminal network arrested
- CISA Issues Warning Against Using Censys, VirusTotal in Threat Hunting Ops
- New SOHO Router Botnet AVrecon Spreads to 70,000 Devices Across 20 Countries
- Hospital Español Auxilio Mutuo de Puerto Rico notifies patients of September 2023 cyberattack
- Hackers Target Apache Tomcat Servers for Mirai Botnet and Crypto Mining
- Ivanti Warns of Another Endpoint Manager Mobile Vulnerability Under Active Attack
Post a Comment
Post a Comment