cybersecurity

5044 readers

1 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks

tweedge

Security researchers discover China-linked malware used to infiltrate Philippine military company (businessinsights.bitdefender.com)

submitted 3 weeks ago* (last edited 3 weeks ago) by Hotznplotzn@lemmy.sdf.org to c/cybersecurity

1 comments fedilink hide all child comments

cross-posted from: https://lemmy.sdf.org/post/42301965

Archived

A Chinese APT group compromised a Philippine military company using a new, fileless malware framework called EggStreme. This multi-stage toolset achieves persistent, low-profile espionage by injecting malicious code directly into memory and leveraging DLL sideloading to execute payloads. The core component, EggStremeAgent, is a full-featured backdoor that enables extensive system reconnaissance, lateral movement, and data theft via an injected keylogger.

[Edit typo.]

you are viewing a single comment's thread
view the rest of the comments

[–] Cybersec@piefed.social 2 points 2 weeks ago

Thank you for posting this one I hadn’t seen it, sucks for the Filipinos.