Pete Recommends – Weekly highlights on cyber security issues, December 4, 2023
Four highlights from this week: How to Make Your Web Searches More Secure and Private; OpenAI’s Custom Chatbots Are Leaking Their Secrets; Inside the Operation to Bring Down Trump’s #TruthSocial and Hamas-Linked Group Revives #sysjoker malware Malware, Leverages OneDrive.
Posted in: AI, Cybercrime, Cybersecurity, Privacy, Search Engines, Social Media
Good day everyone, I hope all is well!
The Check Point Software Technologies Ltd research team took an in-depth look at the #SYSJOKER backdoor and discovered multiple variants as well. Sysjoker is written in Rust and has been used in cyber attacks against Israeli organizations during the Israeli-Hamas war. It also has been designed to target #Windows, #Linux, and #MacOS. I hope you enjoy the article and Happy Hunting!
ISRAEL-HAMAS WAR SPOTLIGHT: SHAKING THE RUST OFF SYSJOKER
https://research.checkpoint.com/2023/israel-hamas-war-spotlight-shaking-the-rust-off-sysjoker/
Notable MITRE ATT&CK TTPs:
TA0002 - Execution
T1059.003 - Command and Scripting Interpreter: PowerShell
TA0003 - Persistence
T1547.001 - Boot or Logon AutoStart Execution: Registry Run Keys/ Startup Folder
TA0011 - Command and Control
T1102.002 - Web Service: Bidirectional Communication
#CyberSecurity #ITSecurity #InfoSec #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #readoftheday
Key Findings Introduction Amid tensions in the ongoing Israel-Hamas war, Check Point Research has been conducting active threat hunting in an effort to discover, attribute, and mitigate relevant regional threats. Among those, some new variants of the SysJoker malware, including one coded in Rust, recently caught our attention. Our assessment is that these were used […]
A new version of #SysJoker written in #Rust is being used against #Israel, currently attributed to #Hamas actors https://thehackernews.com/2023/11/hamas-linked-cyberattacks-using-rust.html
The Rust variant of SysJoker reveals further advancements in the cross-platform threat. Notably, it incorporates random sleep intervals during execution stages, likely aiming to evade sandboxes.
#Cybersecurity #Hamas #Backdoor #Israel #SysJoker #Cyberattack
Cybersecurity experts have brought attention to a Rust version of SysJoker, a cross-platform backdoor. This variant, believed to be employed by a Hamas-affiliated threat actor targeting Israel duri…
"In December 2021, we discovered a new multi-platform backdoor that targets Windows, Mac, and Linux that we have named SysJoker."
https://www.intezer.com/blog/malware-analysis/new-backdoor-sysjoker/
🇨🇵 #SysJoker : le #malware indétectable depuis plusieurs mois sur #Windows, #macOS et #Linux
https://www.clubic.com/antivirus-securite-informatique/virus-hacker-piratage/malware-logiciel-malveillant/actualite-404574-sysjoker-le-malware-indetectable-depuis-plusieurs-mois-sur-windows-macos-et-linux.html
🇬🇧 Newly Found #Sysjoker #Backdoor Targets #Windows, #Linux, and #Mac #Devices
https://cyware.com/news/newly-found-sysjoker-backdoor-targets-windows-linux-and-mac-devices-82f3e089/?&web_view=true
New SysJoker backdoor targets Windows, macOS, and Linux, providing advanced backdoor capabilities
https://gadgeteer.co.za/wp-content/uploads/2022/01/joker-card-air.jpg A new multi-platform backdoor malware named ‘SysJoker’ has emerged in the wild, targeting Windows, Linux, and macOS with the ability to evade detection on all three operating systems. The malware is written in C++, and […]
https://gadgeteer.co.za/new-sysjoker-backdoor-targets-windows-macos-and-linux-providing-advanced-backdoor-capabilities/ https://squeet.me/objects/962c3e1004552c980174b4c03627b9dd194c1499
A new multi-platform backdoor malware named 'SysJoker' has emerged in the wild, targeting Windows, Linux, and macOS with the ability to evade detection on all three operating systems. The malware is written in C++, and while each variant is tailored for the targeted operating system, they are all...
psuPete
Just Another Blue Teamer
Geekmaster 👽
Freemind
Captain Cyberbeard
illyrion
LL Productions FR/Amaki 💙💛
Teddy / Domingo (🇨🇵/🇬🇧)
Danie
Danie van der Merwe