$type=slider$show=home$snippet=hide$cate=0$h=500$va=0$rm=0

Discord once again found to be hosting malware payloads

Cybersecurity researchers have once again witnessed Discord being used to host malicious payloads during an investigation into the increa...

Cybersecurity researchers have once again witnessed Discord being used to host malicious payloads during an investigation into the increasing use of HTML smuggling.

A previous report from Sophos researchers showed the popular gaming-centric messaging platform has unwittingly emerged as the cybercriminals' ally as a means to host and distribute malware.

Now, researchers at Menlo Security deconstructing a new attack have also found threat actors using Discord for hosting malicious payloads.

TechRadar needs you!

We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

>> Click here to start the survey in a new window <<

Named ISOMorph, the campaign uses HTML smuggling to drop the first stage malware through the web browser.

Attack the browser

The researchers explain that HTML smuggling helps deliver malware by effectively bypassing various network security solutions including sandboxes, legacy proxies, and firewalls

“We believe attackers are using HTML Smuggling to deliver the payload to the endpoint because the browser is one of the weakest links without network solutions blocking it,” notes Menlo Security in a blog post analyzing the ISOMorph campaign.

HTML Smuggling was also used in the most recent spear-phishing campaign by the Nobelium group, the threat actor which perpetrated the SolarWinds supply-chain attack.

Popular with web developers as a means to optimize file downloads, threat actors use HTML smuggling to bypass standard perimeter security, explains Menlo Security.

Once it’s in place, the dropper fetches the malicious payload and installs remote access trojans (RATs) that allow the attacker to use the infected machine for their illegitimate purposes.



from TechRadar - All the latest technology news https://ift.tt/3ig4hyw
via IFTTT

COMMENTS

BLOGGER
Name

Apps,3855,Business,148,Camera,1154,Earn $$$,1,Gadgets,1739,Games,924,Innovations,1,Mobile,1695,Paid Promotions,3,Promotions,3,Technology,7934,Trailers,795,Travel,36,Trendly News,20946,Video,4,XIAOMI,12,
ltr
item
Trendly News | #ListenNow #Everyday #100ShortNews #TopTrendings #PopularNews #Reviews #TrendlyNews: Discord once again found to be hosting malware payloads
Discord once again found to be hosting malware payloads
Trendly News | #ListenNow #Everyday #100ShortNews #TopTrendings #PopularNews #Reviews #TrendlyNews
http://www.trendlynews.in/2021/07/discord-once-again-found-to-be-hosting.html
http://www.trendlynews.in/
http://www.trendlynews.in/
http://www.trendlynews.in/2021/07/discord-once-again-found-to-be-hosting.html
true
3372890392287038985
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share. STEP 2: Click the link you shared to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy