Monday, Sep 25, 2023
English News
  • Hyderabad
  • Telangana
  • AP News
  • India
  • World
  • Entertainment
  • Science and Tech
  • Sport
  • Business
  • Rewind
  • ...
    • NRI
    • View Point
    • cartoon
    • Columns
    • Education Today
    • Reviews
    • Property
    • Videos
    • Lifestyle
E-Paper
  • NRI
  • View Point
  • cartoon
  • Columns
  • Reviews
  • Education Today
  • Property
  • Videos
  • Lifestyle
Home | News | Microsoft Catches Spyware Group Targeting Customers Using Windows Bugs

Microsoft catches spyware group targeting customers using Windows bugs

New Delhi: Microsoft has caught an Austrian company selling spyware based on multiple Windows and Adobe zero-day exploits to attack its customers. The Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) found that the spyware developer — officially named DSIRF and codenamed KNOTWEED — developed a spyware called ‘Subzero’ that was used […]

By IANS
Published Date - 11:30 AM, Thu - 28 July 22
Microsoft catches spyware group targeting customers using Windows bugs
whatsapp facebook twitter telegram

New Delhi: Microsoft has caught an Austrian company selling spyware based on multiple Windows and Adobe zero-day exploits to attack its customers.

The Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) found that the spyware developer — officially named DSIRF and codenamed KNOTWEED — developed a spyware called ‘Subzero’ that was used to target law firms, banks, and consultancy firms in the UK, Austria and Panama.

“It’s important to note that the identification of targets in a country doesn’t necessarily mean that a DSIRF customer resides in the same country, as international targeting is common,” the company said in a blogpost late on Wednesday.

MSTIC has found multiple links between DSIRF and the exploits and malware used in these attacks.

These include command-and-control infrastructure used by the malware directly linking to DSIRF, a DSIRF-associated GitHub account being used in one attack, a code signing certificate issued to DSIRF being used to sign an exploit, and other open-source news reports attributing Subzero to DSIRF.

Such cyber mercenaries sell hacking tools or services through a variety of business models.

Two common models for this type of actor are access-as-a-service and hack-for-hire.

In access-as-a-service, the actor sells full end-to-end hacking tools that can be used by the purchaser in operations, with the private-sector offensive actor (PSOA) not involved in any targeting or running of the operation.

In hack-for-hire, detailed information is provided by the purchaser to the actor, who then runs the targeted operations.

Microsoft said that KNOTWEED may blend these models: they sell the Subzero malware to third parties but have also been observed using KNOTWEED-associated infrastructure in some attacks, suggesting more direct involvement.

“Customers are encouraged to expedite deployment of the July 2022 Microsoft security updates to protect their systems against exploits,” the company advised.

Telangana Today Whatsapp
  • Follow Us :
  • Tags
  • Microsoft
  • spyware

Related News

  • Engines, Offices, and Storage Media: Not all is well in the World of Gaming

    Engines, Offices, and Storage Media: Not all is well in the World of Gaming

  • Microsoft bets big on AI with copilot-driven Windows 11, new Surface devices

    Microsoft bets big on AI with copilot-driven Windows 11, new Surface devices

  • Microsoft revamps Paint app after 38 years, introduces layers & transparency features

    Microsoft revamps Paint app after 38 years, introduces layers & transparency features

  • Microsoft Edge shuts tablet-friendly ‘Web Select’ feature

    Microsoft Edge shuts tablet-friendly ‘Web Select’ feature

  • Iranian hackers target defence, satellite firms to gather secrets: Microsoft

    Iranian hackers target defence, satellite firms to gather secrets: Microsoft

  • Oracle, Microsoft strengthen collaboration to facilitate seamless cloud migration for customers

    Oracle, Microsoft strengthen collaboration to facilitate seamless cloud migration for customers

Latest News

  • Opinion: G20 and the evolving world order

    5 hours ago
  • Editorial: Restore electoral democracy

    5 hours ago
  • Bengaluru Bandh tomorrow: Section 144 to be imposed, schools and colleges shut

    5 hours ago
  • KTR, Owaisi raise concern on proposed delimitation of Lok Sabha seats

    5 hours ago
  • Asian Games success makes strong case for including cricket in 2028 Los Angeles Olympics

    5 hours ago
  • Khairtabad Ganesh: Hyderabad traffic police advice people to avoid these routes; details inside

    6 hours ago
  • Hyderabad: Musical fountains add charm to Durgam Cheruvu

    6 hours ago
  • Minister Harish Rao slams Governor’s rejection of MLC candidates

    6 hours ago

company

  • Home
  • About Us
  • Contact Us

business

  • Subscribe

telangana today

  • Telangana
  • Hyderabad
  • Latest News
  • Entertainment
  • World
  • Andhra Pradesh
  • Science & Tech
  • Sport

follow us

© Copyrights 2022 TELANGANA PUBLICATIONS PVT. LTD. All rights reserved. Powered by Veegam