Home Security Threat Intelligence James Webb Telescope Images Loaded With Malware Are Evading EDR

James Webb Telescope Images Loaded With Malware Are Evading EDR

August 31, 2022

596

Threat hunters are warning security teams to be on the lookout for new cyberattack that uses a chance to see historic James Webb space telescope deep field images as a lure. The campaign’s victims are infected with Golang malware.

Besides the novel lure strategy, the Go programming-based malware gives threat actors added flexibility across platforms and frameworks, in addition to providing reverse-engineering protections and obfuscation benefits, the Securonix research team reported. They dubbed the new cyberattack chain GO#WEBFUSCATOR for its ability to get around extended detection and response (EDR) defenses.

“The image contains malicious Base64 code disguised as an included certificate,” the researchers who found the James Webb image-themed cyberattack explained. “At the time of publication, this particular file is undetected by all antivirus vendors according to VirusTotal.”

Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

James Webb Telescope Images Loaded With Malware Are Evading EDR

Follow us on Instagram @thecyberpost

EDITOR PICKS

Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Authentication Bypass

Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Insecure Direct Object...

Elber Cleber/3 Broadcast Multi-Purpose Platform 1.0.0 Authentication Bypass

POPULAR POSTS

Restaurant Reservation System Patches Easy-to-Exploit XSS Bug

Sniffle – A Sniffer For Bluetooth 5 And 4.X LE

Domhttpx – A Google Search Engine Dorker With HTTP Toolkit Built...

POPULAR CATEGORY

Kia Faces $20M DoppelPaymer Ransomware Attack

Cyberattackers Target Instagram Users With Threats of Copyright Infringement

Attacks on Kaseya Servers Led to Ransomware in Less Than 2...