Advertisement
Top
image credit: Adobe Stock

Hackers Exploit Vulnerabilities in Sunlogin to Deploy Sliver C2 Framework

February 7, 2023

Via: The Hacker News
Category:

Threat actors are leveraging known flaws in Sunlogin software to deploy the Sliver command-and-control (C2) framework for carrying out post-exploitation activities.

The findings come from AhnLab Security Emergency response Center (ASEC), which found that security vulnerabilities in Sunlogin, a remote desktop program developed in China, are being abused to deploy a wide range of payloads.

“Not only did threat actors use the Sliver backdoor, but they also used the BYOVD (Bring Your Own Vulnerable Driver) malware to incapacitate security products and install reverse shells,” the researchers said.

Read More on The Hacker News

RELATED PUBLICATIONS

North Korean Hackers Hijack Antivirus Updates for Malware Delivery
MITRE says it was hit by hackers exploiting Ivanti flaws
Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage

Latest Publications

Sweden’s liquor supply severely impacted by ransomware attack on logistics company
Autodesk Drive Abused in Phishing Attacks 
Google fixed critical Chrome vulnerability CVE-2024-4058
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!