You searched for OilRig | SC Media

Your search for OilRig returned 30 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Post remove

Your search for OilRig returned 30 results

Sort Results:

Relevant Recent

Did you mean: oblig

Malware

Double trouble: TwoFace webshell linked to malicious websites targeting Israeli institutions

An analysis of a recently discovered webshell used to harvest credentials from an unnamed Middle Eastern organization has unearthed a complex malicious infrastructure that appears to be targeting Israeli institutions and may possibly be linked to the Iranian APT group OilRig, according to researchers. The webshell, called TwoFace, was discovered by Palo Alto Networks’ Unit…
APTs/cyberespionage, Security News

APT34 hacked back by Lab Dookhtegan

A hacking group going by the name Lab Dookhtegan has posted the tools used by the infamous Iranian APT34 cyberespionage group. APT34, also known as HelixKitten and OilRig has purportedly been behind many attacks, but this time was victimized when a data dump of tools was posted on a Telegram channel, reported Bleeping Computer. The…
Security News

Russian cyber spies likely hijacked Iranian APT group’s infrastructure to deliver backdoor

In early 2018, the Russian APT group Turla likely hijacked the command-and-control infrastructure of Iranian cyberespionage group OilRig, in order to deliver a custom backdoor to its intended victim, according to researchers. The unusual attack took place during one of three Turla campaigns over the last 18 months that experts from Symantec chronicled in a…
APTs/cyberespionage

Report: Multiple groups likely collaborating on Shamoon malware campaign

Analysis of the 2016-2017 Shamoon malware attacks against Saudi organizations suggests that multiple hacker groups may be collaborating on this effort on behalf of a nation-state actor, according to a new blog post and technical analysis published this week by McAfee. “We found that the latest Shamoon campaigns… are connected to other notable campaigns, and…
Malware, Phishing, Security News

LYCEUM threat group targets oil and gas, critical infrastructure orgs in MidEast

A LYCEUM threat group targeting critical infrastructure entities – including oil and gas and telecommunications organizations in the Middle East – went undetected for more than a year, according to researchers at the Dell SecureWorks Counter Threat Unit (CTU). “Stylistically, the observed tradecraft resembles activity from groups such as COBALT GYPSY (which is related to…
Security News

DarkHydrus RogueRobin uses Google Drive as C2 channel

A custom malware dubbed RogueRobin is using Google Drive as an alternative command and control channel. Palo Alto’s Unit 42 researchers have been monitoring the malware used by the DarkHydrus APT group and which is hidden in a series of Arabic language spear phishing emails laced with macro-enabled Excel documents with the .xlsm file extensions,…
Next post in Features