日本企業組織遭到攻擊行動MirrorFace鎖定,對方散布後門程式NoopDoor
支付動態 · 2024-07-18
本週日本電腦緊急應變團隊暨協調中心(JPCERT/CC)針對新一波的MirrorFace攻擊行動提出警告,駭客針對特定廠牌設備的已知漏洞而來,目的是入侵受害組織並部署名為NoopDoor的後門程式
一旦該惡意程式成功執行,駭客就會對程式碼進行加密處理,並存放於特定的系統登錄檔裡,這麼做的目的,主要是未來再度執行NoopDoor時,電腦就會根據相關資料載入相關配置。
而對於攻擊者執行的活動,研究人員表示,他們看到對方透過LSASS、NTDS.dit,以及特定的機碼挖掘Windows帳密資料。
再者,駭客也試圖取得網域管理員權限,進行橫向移動,存取工作站電腦及伺服器。研究人員看到對方進行偵察及外洩資料的活動,搜括資料的範圍不光本機檔案,還包含雲端檔案共用平臺OneDrive、協作平臺Teams,以及IIS伺服器。
熱門文章
GAT Expo Puerto Rico Will Pulse with the New Era of Gaming in the Caribbean
Marketing
Institutional Academy that exceeded expectations marked the opening of GAT CDMX
Online Game
New Jersey July Gambling Revenue Hits $606M, Sweeps Casinos Banned
Regulation
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
Kazakhstan plans to penalise online casino promotions
Regulation
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
Vietnam's tightening online gaming policy creates new market opportunities
Southeast Asia
GGC Awards 2026 Shines in Colombo: Honoring Leaders and Innovators in the iGaming Industry
HUIDU Focus
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
