SurveyLama Alarmed Over Data Breach of 4 4 Million Users techtimes.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from techtimes.com Daily Mail and Mail on Sunday newspapers.
Get Permission
Microsoft is warning users of its Azure cloud platform that hackers are using several living off the land attack techniques to evade security measures, escalate privileges and deploy cryptominers. The software giant released a threat detection and mitigation strategy for the platform.
Hackers are using Azure LoLBins, which refers to weaponizing preinstalled Windows or Linux binary tools designed for legitimate purposes within the Azure platform. Attackers are increasingly employing stealthier methods to avoid detection. Evidence for a variety of campaigns has been witnessed, Microsoft notes. The usage of LoLBins is frequently seen, mostly combined with fileless attacks, where attacker payloads surreptitiously persist within the memory of compromised processes and perform a wide range of malicious activities. Together with the use of legitimate LoLBins, attackers’ activities are more likely to remain undetected.
Example of fake Facebook page used to help deliver Molerats malware to victims (Source: Cybereason) Molerats, an Arabic-speaking advanced persistent threat group that has been targeting victims mainly in the Middle East for several years, is now abusing Facebook accounts, as well as other cloud-based platforms, to deploy previously undocumented malware as part of an ongoing espionage campaign, according to security firm Cybereason.
The hacking group, which is also known as the Gaza Cybergang, is a politically motivated organization that has been active since at least 2012. The group was previously tied to espionage campaigns in Israel and Palestine, but it also has targeted victims in the U.S. and Europe (see: