There is now a new significant threat in the security infrastructure, and it comes from an unknown group of Chinese hackers who are launching a dangerous attack on the world. The group’s mode remains unknown, and the only information researchers now have is that in this case they have a similar framework to the infamous Cobalt Strike virus.

Chinese hackers bring new threats like cobalt attack

Qbot Botnet deploys malware payloads via malicious Windows installers

(Photo: Unsplash’s Philipp Katzenberger)

Bleeping Computer reported that a new Chinese hacking group is using its virus against the public, targeting a framework called “Manjusaka”, which poses a dangerous threat to everyone. Cisco Talos discovered the new threat from the Chinese group, and they said it resembles the former infamous framework, Cobalt Strike.

Like Cobalt Strike, Manjusaka uses a suite of similar remote access trojans (RAT) that involve file access, command execution, network exploration, and more actions against the user. In addition, it hides in fake COVID-19 messages and reports mainly centered in Golmud City in Tibet, and clicking on them can infect the device.

Manjusaka is written in the cross-platform Rust programming language and uses the GoLang binaries.

Also read: Data breach in US federal courts: Justice Department investigates cyberattack on records system

What is Cobalt Strike and how dangerous is it?

According to Malwarebytes, Cobalt Strike is a trojan penetration testing tool that threat actors use to infect or victimize a said system and continue their vendetta against their prey. It is a dangerous tool because it was effective when it was first discovered by researchers, infecting a huge number of users in the public landscape, while masquerading as an important service.

Hackers and the security infrastructure now

Several security measures have been put in place to help and prevent breaches or attacks that bring many threats to the world, and these are being carried out by technology companies that are now available. There was one update to Microsoft Office that blocks malware and other security threats, but it didn’t stop threat actors from finding new ways to access it for their vendettas.

As the world expands into technology and focuses on bringing more for the world to experience in the latest tech landscape, hackers and other forms of criminals are getting smarter in the way they attack.

Even receiving calls or text messages from wrong numbers or those who use random numbers to contact different people or insert their links targeting malware or viruses for devices is already a significant threat to everyone. Agencies like the FCC, the FBI and more are already working to prevent this from happening in the future.

Hackers come from different countries and different sizes as they can be a guild of threat actors or one person using their systems to lure and trap users. These Chinese hackers are something that control agencies are targeting, especially when they use the key framework for their attacks, including that of the Cobalt Strike.

Related article: Android Banking Malware: 17 Google Play Android Apps Can Steal Your Password

This article is owned by TechTimes

Written by Isaiah Richard

ⓒ 2022 All rights reserved. Do not reproduce without permission.




Leave A Reply