In a three-year campaign, Chinese hackers exploit a "rarely seen" Windows mechanism

Friday, 24 March, 2023

In a three-year campaign, Chinese hackers exploit a "rarely seen" Windows mechanism

<p>Cybereason has revealed a sophisticated Winnti cyber campaign that exploits Windows mechanisms in a 'rarely seen' manner. The covert attacks have primarily targeted the networks of technology and manufacturing firms in Europe, Asia, and North America in order to steal sensitive proprietary information. Winnti is an APT that exploits the Common Log File System Stashlog, which manipulates the NTFS and Transactional Registry operations of CLFS.<br />  </p>

Read full story at Zdnet

Tags:

Categories

In a three-year campaign, Chinese hackers exploit a "rarely seen" Windows mechanism

Also Read

Leaked Black Basta Chat Logs Reveal Ransomware Gang's Inner Workings

Apple Removes iCloud End-to-End Encryption for UK Users Following Government Demand

Global Security Concerns Lead Nations to Restrict DeepSeek AI App Usage

CISA Election Security Officials Placed on Leave Amid Internal Review

Cisco Hacked: Cyberattack Exposes Sensitive Data Amid Security Breach

XE Hacker Group Exploits VeraCore Zero-Day Vulnerability for Cyber Attacks

Hackers Exploit Google Tag Manager To Inject Malicious Code, Steal Data

LLM Hijackers Target DeepSeek V3 Model, Raising AI Security Concerns

Australia Bans DeepSeek AI on Government Devices Over Security Concerns

Subscribe To Our Newsletter.