1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Gamers are being targeted by more dangerous malware

    From TechnologyDaily@1337:1/100 to All on Thu Jun 1 15:30:03 2023
    Gamers are being targeted by more dangerous malware

    Date:
    Thu, 01 Jun 2023 14:16:24 +0000

    Description:
    Hackers are selling malware under the guise of legit software, targeting mostly the gaming community.

    FULL STORY ======================================================================

    Gamers are being targeted by a dangerous and potent malware strain that some researchers believe could be a stepping stone towards attacking corporate targets.

    Cybersecurity researchers from AT&T recently discovered a remote access
    trojan (RAT) named SeroXen being advertised and sold on the dark web and in Discord channels.

    SeroXen is built on a number of known malware, including Quasar RAT, r77 rootkit, and the NirCmd. Its hard to detect and offers a number of dangerous functionalities. Selling malware

    "The SeroXen developer has found a formidable combination of free resources
    to develop a hard to detect in static and dynamic analysis RAT," AT&T says in its report.

    "The use of an elaborated open-source RAT like Quasar, with almost a decade since its first appearance, makes an advantageous foundation for the RAT, the company says, further stating that the combination of NirCMD and r77-rootkit are logical additions to the mix, since they make the tool more elusive and harder to detect."

    Quasar allows for reverse proxy, remote shell, remote desktop, TLS communication, and file management, and can be grabbed from GitHub. r77 rootkit offers file-less persistence, child process hooking, malware embedding, in-memory process injection, and antivirus evasion, while NirCmds goal is to do simple Windows system tasks, as well as peripheral management tasks. Read more

    Are you a target of Pegasus spyware? Get an iPhone and stay safe


    Pegasus spyware should face blanket ban, EU says


    This is the best ID theft protection right now

    Some threat actors were observed advertising the tool as a legitimate remote access program for Windows 10 and Windows 11. Theyre even charging for it - $15 a month, or $60 for a lifetime license. It remains unclear if the website was built by SeroXens developers, or affiliates.

    At the moment, most of the victims are gamers, but the researchers fear that with the growth of popularity, the tool might be picked up by more ambitious actors that could target small or medium-sized businesses (SMBs) and
    corporate entities, both in the private and public sectors. Keep your digital premises safe with the best firewalls right now

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/gamers-are-being-targeted-by-more-dangerous-mal ware


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)