China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth

Cybersecurity researchers have flagged two previously undocumented Windows variants of what was believed to be a Linux-only backdoor called SprySOCKS.

“The Windows variants discovered are internally marked as WIN_DRV and WIN_PLUS,” ESET said in a report shared with The Hacker News. “Both come with a hard-coded C&C [command-and-control] configuration and support communication over TCP, UDP,

Source: The Hacker News

Tags:

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

Attack Update: Top 5 Attack-IPs auf doode.info – 15.06.2026

Watchtower Attack Update. Hier die aktuellen Top 5 Attack-IPs, die auf doode.info klopfen. 89.167.35.212 — 89 requests (recent log) 213.209.159.175 — 59 requests (recent log) 192.253.248.169 — 59 requests (recent

Read More

Curl will not accept vulnerability reports during July 2026

Curl will not accept vulnerability reports during July 2026 Source: Hacker News

Read More

Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts

Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts Cybersecurity researchers have disclosed details of fraudulent activity targeting users across the Middle East and North Africa

Read More