Head Topics

Near-undetectable malware linked to Russia's Cozy Bear

Canada News News

Near-undetectable malware linked to Russia's Cozy Bear
Canada Latest News,Canada Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 55 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 25%
  • Publisher: 61%

The fun folk who attacked Solar Winds using a poisoned CV and tools from the murky world of commercial hackware

Once the malware is running, many bad things can happen to infected machines.

But Unit 42 is not concerned with those bad things. The technique used to get BRC4 running is what caught the team's eye, because it is so cunning it suggests nation-state actors were behind its development. Maybe even APT29 – the Moscow-linked gang also known as Cozy Bear and thought to be involved in the attack on Solar Winds and many other raids. APT29 has used poisoned ISOs in the past.

Unit 42 also notes that the ISO used in this attack was created on the same day a new version of BRC4 appeared, suggesting that state-backed actors could be watching the murky world of commercial malware and quickly putting it to work while the world tries to catch up. "The analysis of the two samples described in this blog, as well as the advanced tradecraft used to package these payloads, make it clear that malicious cyber actors have begun to adopt this capability," Unit 42's post states."We believe it is imperative that all security vendors create protections to detect BRC4 and that all organizations take proactive measures to defend against this tool.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

Canada Latest News, Canada Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Rangers fans warned as road near Ibrox Stadium now closed for five monthsRangers fans warned as road near Ibrox Stadium now closed for five monthsPARTS of a busy road near Ibrox Stadium is now closed to traffic for five months.
Read more »

Man arrested after 10 vehicles stolen from farm near LincolnMan arrested after 10 vehicles stolen from farm near LincolnSuspects forced entry into the location and smashed open a key safe before making their escape with the vehicle Lincoln Lincolnshire
Read more »

Man charged with murder after boy, 11, found fatally injured near parkMan charged with murder after boy, 11, found fatally injured near parkA MAN has been charged with the murder of an 11-year-old boy who was found injured near a country park in Derbyshire. Michael Harrison, 41, from Nottingham, has been charged with murder after the b…
Read more »

Kitten rescued from M18 motorway near DoncasterKitten rescued from M18 motorway near DoncasterA traffic officer finds the 'feisty' feline in the middle of the M18 near Doncaster.
Read more »

Biker seriously injured in crash near BostonBiker seriously injured in crash near BostonThe road has been closed to allow collision investigation work to be carried out Lincolnshire
Read more »



Render Time: 2025-04-08 00:15:32