Laxaro

View the latest news and breaking news today

researchers uncover powershell trojan that uses dns queries to get its orders

researchers uncover powershell trojan that uses dns queries to get its orders Article News With Simple Text and Web Resource Link. For View Full Content Click on Source Link on Then Bottom Of News.



researchers uncover powershell trojan that uses dns queries to get its orders

enlargeabraxas3dshare this storyresearchers at cisco's talos threat research group are publishing research today on a targeted attack delivered by a malicious microsoft word document that goes to great lengths to conceal its operations. based entirely on windows powershell scripts, the remote access tool communicates with the attacker behind it through a service that is nearly never blocked: the domain name service.the malware was first discovered by a security researcher (@simpo13) who alerted talos because of one peculiar feature of the code that he discovered: it called out cisco's sourcefire security appliances in particular with the encoded text, "sourcefiresux."delivered as an e-mai...