Tag Archive for: pattern

A Malware Attack Pattern to Infect Devices

/in


DangerousPassword

Recently, it has been observed by JPCERT/CC that threat actors are actively targeting the cryptocurrency exchanges linked to the DangerousPassword attack campaign (aka CryptoMimic or SnatchCrypto), involving the distribution of malware through email shortcuts since June 2019.

Apart from malware distribution through email, various attack patterns are utilized by the attackers to infect targets with malware, with four specific patterns being observed.

Here below we have mentioned those four attack patterns:-

  • Attacks by sending malicious CHM files from LinkedIn
  • Attacks using OneNote files
  • Attacks using virtual hard disk files
  • Attacks targeting macOS

Analysis of Attack Patterns

Here below, we have mentioned the complete analysis of the four attack patterns that are observed:-

Attacks by sending malicious CHM files from LinkedIn


Attackers employ alternative methods of reaching targets by utilizing LinkedIn to send malware, where the compressed RAR file received contains a CHM file that, upon execution, downloads and runs an external MSI file.

DangerousPassword

Upon execution, the MSI file deploys a PowerShell script to download and execute another MSI file (Administrator-a214051.msi) which, in turn, collects and transmits information about infected hosts via HTTP POST request in Base64 encoded format.

Researchers have confirmed that compromised LinkedIn accounts, posing as job providers, are used to send malware to targets, although the method of compromising social networking accounts by the attackers remains unknown.

DangerousPassword

Attacks Using OneNote files

The utilization of OneNote file exploitation for malware infection, observed in Emotet and other malware attacks, is increasingly prevalent in email attachment-based infection campaigns.

In line with other malware attacks, DangerousPassword employs a OneNote file containing embedded malware, and opening the file triggers the infection.

DangerousPassword

The OneNote file contains a malicious MSI file that installs a DLL on the host and executes it, while also possessing the ability to identify AV tools.

Upon detecting specific antivirus software, the malware adjusts its actions by terminating the following things:-

  • It hooks the process to NTDLL to evade monitoring
  • Modifying data…

Source…

GBT Seeking to Adapt xCalibre Pattern Recognition Technology for Medical Imaging Analytics

/in


Get instant alerts when news breaks on your stocks. Claim your 1-week free trial to StreetInsider Premium here.

SAN DIEGO, June 08, 2021 (GLOBE NEWSWIRE) — GBT Technologies Inc. (OTC PINK: GTCH) (“GBT” or the “Company”), is seeking to adapt its xCalibre image analysis to post process health related imaging data with the goal of detecting potential issues and providing higher accuracy diagnostics. xCalibre imaging algorithms has the capability of processing high resolution images and videos detecting wide variety of pre-defined irregular objects. Using GBT’s proprietary neural network technology along with its computational geometry algorithms, GBT is seeking to adapt xCalibre to analyze post processed imaging of CT, Ultrasound, MRI and X-RAY. The goal will be to identify abnormalities and alerted medical professionals for further investigation. xCalibre system makes it possible to process and analyze imaging information, identifying anomalies of interest. The system includes technology that is protected with the Company’s recent filed image recognition patent. xCalibre’s cognitive capabilities enables it to learn with time and to accumulate knowledge in the same pattern as a human would.

“we intend to develop our xCalibre system using our proprietary computational geometry algorithms to scan, pixelate and analyze a very high-resolution image. We believe our AI technology could make it a potential intelligent assistant for medical professionals in wide variety of health fields. For example, as an assistance in X-RAYS or Ultrasound images. Another example can be a CT or MRI imaging analysis. Our goal is to implement xCalibre to post process images of MRI, X-RAY, Ultrasound and CT, analyzing for suspicious abnormalities. xCalibre is capable of vast amount of data handling, which enables rapid imaging analytics. We believe that such system can be of a great asset for medical professionals providing what is expected to be a precise image analytics assisting with accurate diagnostics.” Stated Danny Rittman the Company’s CTO.

There is no guarantee that the Company will be successful in researching, developing or implementing this system. In order to successfully…

Source…

Android Pie Has An Annoying Pattern Lock Issue That Could Put Your Security At Risk

/in

  1. Android Pie Has An Annoying Pattern Lock Issue That Could Put Your Security At Risk  ValueWalk

    2. Full coverage

android security news – read more

Your Android lock screen pattern isn’t as safe as a PIN code

/in
Your Android lock screen pattern isn't as safe as a PIN code

What’s safer? Using a numeric PIN code to unlock your Android smartphone or relying on a finger squiggle? The answer might surprise you.

Read more in my article on the We Live Security blog.

Graham Cluley