You searched for OilRig | SC Media

Your search for OilRig returned 6 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Malware remove

Your search for OilRig returned 6 results

Sort Results:

Relevant Recent

Did you mean: oblig

Malware

Double trouble: TwoFace webshell linked to malicious websites targeting Israeli institutions

An analysis of a recently discovered webshell used to harvest credentials from an unnamed Middle Eastern organization has unearthed a complex malicious infrastructure that appears to be targeting Israeli institutions and may possibly be linked to the Iranian APT group OilRig, according to researchers. The webshell, called TwoFace, was discovered by Palo Alto Networks’ Unit…
Malware, Phishing, Security News

LYCEUM threat group targets oil and gas, critical infrastructure orgs in MidEast

A LYCEUM threat group targeting critical infrastructure entities – including oil and gas and telecommunications organizations in the Middle East – went undetected for more than a year, according to researchers at the Dell SecureWorks Counter Threat Unit (CTU). “Stylistically, the observed tradecraft resembles activity from groups such as COBALT GYPSY (which is related to…
APTs/cyberespionage, Malware, Security News, Website/Web Server Security

DNSpionage actors adjust tactics, debut new remote administration tool

The actors responsible for the DNSpionage DNS hijacking campaign have altered some of their tactics, techniques and procedures (TTPs), introducing a new reconnaissance phase as well as a new malicious remote administration tool called Karkoff. Discovered last November, the operation primarily targets Lebanon- and United Arab Emirates-affiliated .gov domains, commandeering the websites’ DNS servers so…
APTs/cyberespionage, Cybercrime, Malware, Security News

Shamoon disk wiper attack on Saipem signals new affront against energy sector, Middle Eastern interests

The malware used to disrupt the global operations of Italian energy contractor Saipem S.p.A. earlier this week was none other than Shamoon, a disk wiper that’s been used in two prior attacks against Saudi interests. Saipem identified Shamoon as the culprit in a Dec. 12 news release that updated its previously vague disclosure of the incident.…
APTs/cyberespionage, Cybercrime, Malware, Security News

Bahraini oil company reportedly attacked by new ‘Dustman’ disk wiper

Bapco, the national oil company of the Persian Gulf island nation of Bahrain, was reportedly targeted in a Dec. 29 disk wiper attack that officials believe originated from Iran-backed hackers. Iran is historically associated with past disk wiper campaigns against energy companies, most notably the destructive Shamoon or Disttrack malware attack against the Saudi Arabian…
Malware

New Backdoor targets Russian businesses in apparent spear phishing campaign

What appears to be an ongoing spear phishing campaign has been targeting Russian-speaking businesses, including banks and mining firms, with a newly discovered backdoor malware program since late June, according to researchers at Trend Micro. The backdoor, whose final payload is a malicious XML file by the name of JS_GETFO.ZHEG-A, is capable of downloading and…
Next post in Malware