|
You are here |
objective-see.org | ||
| | | | |
objective-see.com
|
|
| | | | | [AI summary] The text discusses the analysis of the FinSpy malware, a macOS implant developed by FinFisher. It outlines the malware's components, including a rootkit, persistence mechanisms, and communication with a Command & Control (C&C) server. The analysis highlights the malware's use of kernel-mode rootkit capabilities, unsigned kernel extensions, and techniques like process hiding. The text also covers detection methods using tools like KnockKnock and BlockBlock, and emphasizes the importance of monitoring for suspicious items like logind and its associated files. The conclusion underscores the significance of understanding such threats, even if they are somewhat outdated, to better defend against more advanced threats. | |
| | | | |
unit42.paloaltonetworks.com
|
|
| | | | | PGMiner is a novel Linux-based cryptocurrency mining botnet that exploits a disputed PostgreSQL remote code execution vulnerability. | |
| | | | |
blogs.blackberry.com
|
|
| | | | | There's a new, nearly-impossible-to-detect Linux threat that may be hiding in your running processes. Learn more about "Symbiote," discovered via new joint research by Intezer and BlackBerry. | |
| | | | |
reliaquest.com
|
|
| | | ReliaQuest has uncovered a new vulnerability in SAP NetWeaver, CVE-2025-31324, involving unauthorized file uploads and malicious execution. | ||