Lucene search
K

4 matches found

The Hacker News
The Hacker News
added 2026/01/30 12:8 p.m.15 views

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Cybersecurity researchers have discovered a new campaign attributed to a China-linked threat actor known as UAT-8099 that took place between late 2025 and early 2026. The activity, discovered by Cisco Talos, has targeted vulnerable Internet Information Services IIS servers located across Asia, bu...

6.3AI score
Exploits0
The Hacker News
The Hacker News
added 2025/08/29 1:12 p.m.4 views

Abandoned Sogou Zhuyin Update Server Hijacked, Weaponized in Taiwan Espionage Campaign

An abandoned update server associated with input method editor IME software Sogou Zhuyin was leveraged by threat actors as part of an espionage campaign to deliver several malware families, including C6DOOR and GTELAM, in attacks primarily targeting users across Eastern Asia. "Attackers employed...

6.7AI score
Exploits0
HackRead
HackRead
added 2025/02/27 7:43 p.m.19 views

New Backdoor Auto-color Linux Targets Systems in US and Asia

Auto-color: New Linux backdoor malware targeting the US and Asia. Learn about its advanced evasion, persistence, and detection…...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/09 9:39 a.m.3 views

Researchers Uncover SideWinder's Latest Server-Based Polymorphism Technique

The advanced persistent threat APT actor known as SideWinder has been accused of deploying a backdoor in attacks directed against Pakistan government organizations as part of a campaign that commenced in late November 2022. "In this campaign, the SideWinder advanced persistent threat APT group us...

7.1AI score
Exploits0
Rows per page
Query Builder