By Kevin Townsend on May 04, 2021
A new variant of the Buer malware loader has been detected, written in Rust. The original version is written in C. Rust is efficient, easy-to-use, and an increasingly popular programming language – Microsoft uses it, and joined the Rust Foundation in February 2021.
Researchers at Proofpoint identified the new variant in early April 2021, and named it RustyBuer. Like Buer, it works as a downloader to distribute other malware to compromised systems. The most likely reason for the development of a Rust variant is to evade anti-malware detections that are based on features of the malware written in C.
minute read
Share this article:
It’s coming in emails disguised as DHL Support shipping notices and is apparently getting prepped for leasing on the underground.
A variant of the Buer malware, which is being distributed in emails disguised as DHL support shipping notices, comes with a fresh code rewrite in the popular Rust language and looks like it may be in the process of prepping for rental to other cybercrooks.
Join Threatpost for “Fortifying Your Business Against Ransomware, DDoS & Cryptojacking Attacks” a LIVE roundtable event on Wednesday, May 12 at 2:00 PM EDT for this FREE webinar sponsored by Zoho ManageEngine.
BankInfoSecurity
May 20, 2021
Compliance
May 4, 2021
Compliance
Compliance
Compliance
DougOlenick) • May 3, 2021
A malicious attachment containing RustyBuer malware (Source: Proofpoint)
Attackers are using a freshly updated variant of the Buer first-stage malware loader rewritten in the Rust programming language to help evade detection, the security firm Proofpoint reports.
In April, researchers observed the loader, dubbed RustyBuer, being distributed via emails purporting to be DHL shipping support notices. Proofpoint says a gang likely developed the malware to sell to others on darknet marketplaces. RustyBuer is capable of exfiltrating information from a targeted system. The new strain is completely rewritten in a coding language called Rust, a departure from the previous C programming language. It is unusual to see common malware written in a completely different way, the researchers
Windows 10 version 21H1: All the changes so far windowscentral.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from windowscentral.com Daily Mail and Mail on Sunday newspapers.
What’s New in Update KB5000841 for Windows 7 Mar 10, 2021 16:17 GMT
Windows 7 no longer receives security updates since January
Microsoft has shipped a new Windows 7 monthly rollup as part of the March 2021 Patch Tuesday cycle, but once again, this one is shipped only to devices configured to receive Extended Security Updates.
Windows 7 has already been retired in January 2020, so only computers that are enrolled in Microsoft’s ESU program, and thus getting custom security updates in exchange for a fee, are getting this monthly rollup.
Organizations that have already registered their devices for custom updates are therefore provided with monthly rollup KB5000841, which includes several security improvements, including for Windows Fundamentals, Windows Shell, Windows UAC, and Windows Media.