China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth

Cybersecurity researchers have flagged two previously undocumented Windows variants of what was believed to be a Linux-only backdoor called SprySOCKS.

“The Windows variants discovered are internally marked as WIN_DRV and WIN_PLUS,” ESET said in a report shared with The Hacker News. “Both come with a hard-coded C&C [command-and-control] configuration and support communication over TCP, UDP,

Source: The Hacker News

Tags:

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals Read on The Hacker News Source: The Hacker News

Read More

Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization

Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization For security teams, the findings never stop, but confidence in knowing which ones matter is becoming harder to maintain. The problem

Read More

TinyWind: A pixel pirate sailing game with real wind physics (380k+ kms sailed)

TinyWind: A pixel pirate sailing game with real wind physics (380k+ kms sailed) Source: Hacker News

Read More