Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

SideWalk Backdoor Linked to China-Linked Spy Group ‘Grayfly’

🗓️ 09 Sep 2021 14:56:30Reported by Lisa VaasType 
threatpost
 threatpost🔗 threatpost.com👁 110 Views

SideWalk backdoor linked to China-Linked Spy Group Grayfly. ESET researchers discover SparklingGoblin APT behind SideWalk, a modular backdoor for cyberespionage. Symantec reports recent campaigns targeting Exchange and MySQL servers

Show more
Related
Refs
ReporterTitlePublishedViews
Family
Zero Day Initiative		(Pwn2Own) Microsoft Exchange Server PowerShell Improper Authentication Remote Code Execution Vulnerability
19 Jul 202100:00
zdi
CVE		CVE-2021-34523
14 Jul 202118:15
cve
Prion		Privilege escalation
14 Jul 202118:15
prion
Vulnrichment		CVE-2021-34523 Microsoft Exchange Server Elevation of Privilege Vulnerability
14 Jul 202117:54
vulnrichment
Cvelist		CVE-2021-34523 Microsoft Exchange Server Elevation of Privilege Vulnerability
14 Jul 202117:54
cvelist
NVD		CVE-2021-34523
14 Jul 202118:15
nvd
Microsoft CVE		Microsoft Exchange Server Elevation of Privilege Vulnerability
13 Jul 202107:00
mscve
CISA KEV Catalog		Microsoft Exchange Server Privilege Escalation Vulnerability
3 Nov 202100:00
cisa_kev
AttackerKB		CVE-2021-34523
14 Jul 202100:00
attackerkb
AttackerKB		ProxyShell Exploit Chain
28 Dec 202300:00
attackerkb
Rows per page
SourceLink
threatpostwww.threatpost.com/sparklinggoblin-apt/168928/
welivesecuritywww.welivesecurity.com/2021/08/24/sidewalk-may-be-as-dangerous-as-crosswalk/
threatpostwww.threatpost.com/black-hat-linux-spyware-stack-chinese-apts/158092/
threatpostwww.threatpost.com/apt41-operatives-indicted-hacking/159324/
symantec-enterprise-blogswww.symantec-enterprise-blogs.security.com/blogs/threat-intelligence/grayfly-china-sidewalk-malware
justicewww.justice.gov/opa/pr/seven-international-cyber-defendants-including-apt41-actors-charged-connection-computer
threatpostwww.threatpost.com/apt41-operatives-indicted-hacking/159324/
threatpostwww.threatpost.com/cobalt-strike-cybercrooks/167368/
us-certwww.us-cert.cisa.gov/ncas/current-activity/2021/08/21/urgent-protect-against-active-exploitation-proxyshell
threatpostwww.threatpost.com/proxyshell-attacks-unpatched-exchange-servers/168879/
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
09 Sep 2021 14:30Current
9.9High risk
Vulners AI Score9.9
CVSS27.5
CVSS39
EPSS0.95984
sidewalk backdoorchina-linked spy groupgrayflysparklinggoblin apteset researcherscyberespionagesymantecexchangemysql
110
.json
Report