Geeks for your information News Privacy & Security News v
Inception Group Uses POWERSHOWER Backdoor in Two-Stage Spear Phishing Attacks
Inception Group Uses POWERSHOWER Backdoor in Two-Stage Spear Phishing Attacks
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
06 November 18, 15:19
Quote:Backdoor uses anti-forensics techniques to hinder analysis

The Inception threat group has been observed exploiting the CVE-2017-11882 Microsoft Office memory corruption vulnerability and a PowerShell-based backdoor dubbed POWERSHOWER in their most recent multi-stage attack campaign during October 2018.

In the attack campaign recently witnessed by Palo Alto Networks' Unite 42, Inception has remodeled their attack model using a single document that employs Microsoft Word remote templates to download remote VBScript exploit payloads packaged as OLE objects.

Source: https://news.softpedia.com/news/inceptio...3623.shtml
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
K-Lite Codec Pack 19.2.0 / 19.2.3 Update
Changes in 19.2.3 ...harlan4096 — 07:10
Google Chrome 140.0.7339.207 / 140.0.733...
Google Chrome 140....harlan4096 — 07:08
hunderbird 143.0.1
Thunderbird 143.0....harlan4096 — 07:06
Firefox add-on developers may roll back ...
For many users, a ...harlan4096 — 07:05
Microsoft silently introduces Windows AI...
Microsoft has quie...harlan4096 — 07:04

[-]
Birthdays
Today's Birthdays
avatar (40)maskbSleew
Upcoming Birthdays
avatar (38)fapedDow
avatar (48)pohudidere
avatar (38)eqiduseb

[-]
Online Staff
There are no staff members currently online.

>