New SideWalk Backdoor Targets U.S.-based Computer Retail

upnorth

upnorth

Moderator
Thread author
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,459
Content source
https://thehackernews.com/2021/08/new-sidewalk-backdoor-targets-us-based.html
A computer retail company based in the U.S. was the target of a previously undiscovered implant called SideWalk as part of a recent campaign undertaken by a Chinese advanced persistent threat group primarily known for singling out entities in East and Southeast Asia.

Slovak cybersecurity firm ESET attributed the malware to an advanced persistent threat it tracks under the moniker SparklingGoblin, an adversary believed to be connected to the Winnti umbrella group, noting its similarities to another backdoor dubbed Crosswalk that was put to use by the same threat actor in 2019. "SideWalk is a modular backdoor that can dynamically load additional modules sent from its C&C [command-and-control] server, makes use of Google Docs as a dead drop resolver, and Cloudflare workers as a C&C server," ESET researchers Thibaut Passilly and Mathieu Tartare said in a report published Tuesday. "It can also properly handle communication behind a proxy."
Click to expand...
thehackernews.com

New SideWalk Backdoor Targets U.S.-based Computer Retail Business

A computer retailer in the United States was recently attacked with a new backdoor malware called "SideWalk."
thehackernews.com thehackernews.com
 
  • Like
  • +Reputation
  • Thanks
Reactions: Andy Ful, plat, Der.Reisende and 9 others
silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,136
Latest research published by researchers from Broadcom's Symantec has pinned the SideWalk backdoor on the China-linked espionage group, pointing out the malware's overlaps with the older Crosswalk malware, with the latest Grayfly hacking activities singling out a number of organizations in Mexico, Taiwan, the U.S., and Vietnam.

"A feature of this recent campaign was that a large number of targets were in the telecoms sector. The group also attacked organizations in the IT, media, and finance sectors," Symantec's Threat Hunter Team said in a write-up published on Thursday.
Click to expand...
thehackernews.com

Experts Link Sidewalk Malware Attacks to Grayfly Chinese Hacker Group

Chinese hackers may be behind Sidewalk malware attacks, experts say
thehackernews.com thehackernews.com
 
  • Like
Reactions: Andy Ful, plat, Gandalf_The_Grey and 1 other person
You must log in or register to reply here.

Similar threads

upnorth
    • Like
    • Wow
    • +Reputation
SparklingGoblin Updates Linux Version of SideWalk Backdoor in Ongoing Cyber Campaign
Replies
0
Views
476
News Archive
upnorth
upnorth
Lymphocyte
    • Like
    • +Reputation
Malware News SpectralBlur: New macOS Backdoor Threat from North Korean Hackers
Replies
1
Views
1,203
Security News
MuzzMelbourne
MuzzMelbourne
silversurfer
    • Like
    • +Reputation
Chinese hackers use new custom backdoor to evade detection
Replies
0
Views
591
News Archive
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top