New Malware Targets Windows Subsystem for Linux to Evade Detection

The Hacker News reports an new malware focusing on Linux systems.

A number of malicious samples have been created for the Windows Subsystem for Linux (WSL) with the goal of compromising Windows machines, highlighting a sneaky method that allows the operators to stay under the radar and thwart detection by popular anti-malware engines.

The "distinct tradecraft" marks the first instance where a threat actor has been found abusing WSL to install subsequent payloads.

Read further on The Hacker News


Stolen Credentials Led to Data Theft at United Nations

The Threat Post reported on cybersecurity incident in U.N.O. caused by credentials theft.

A threat actor used stolen credentials from a United Nations employee to breach parts of the UN’s network in April and steal critical data, a spokesman for the intergovernmental organization has confirmed.

That data lifted from the network can be used to target agencies within the UN, which already has experienced and responded to “further attacks” linked to the breach, Stéphane Dujarric, spokesman for the UN Secretary-General, told Bloomberg, which broke the news in a report published Thursday.

Read further on The Threat Post