Blog | G5 Cyber Security

SolarMarker Malware Uses Novel Techniques to Persist on Hacked Systems

SolarMarker malware has been linked to at least three different attack waves in 2021. Malware uses stealthy Windows Registry tricks to establish long-term persistence on compromised systems. Remote access implants are still being detected on targeted networks despite decline in November 2021. Backdoor can steal information from web browsers, facilitate cryptocurrency theft, and execute arbitrary commands and binaries, the results of which are exfiltrated back to a remote server. Researchers: “Defenders should always check whether attackers have left something behind in the network that they can return to later””]

Source: https://thehackernews.com/2022/02/solarmarker-malware-uses-novel.html

Exit mobile version