The only thing not emerging from the researchers’ new threat insight report is any reduction in malicious activity – although it does seem that the COVID-19 themed phishing campaigns are finally abating. Simultaneously, users continue to fall prey to simple phishing attacks time and time again.” Ian Pratt, global head of security, personal systems at HP Inc, added, “The proliferation of pirated hacking tools and underground forums is allowing previously low-level actors to pose serious risks to enterprise security. “A big driver of why hacking tools are so easy to obtain,” say the researchers, “is widespread malware piracy or ‘cracking’, enabling anyone to use tools without payment – even if developers intended otherwise.”ĭr. The process illustrates how low-level hackers can access and use high-level malware. “Threat actors,” say researchers in the HP Wolf Security Threat Insights Report for 1H/2021 ( PDF), “can either use pre-bundled optical character recognition (OCR), computer vision models, or configure the tool to query the APIs of third-party CAPTCHA-solving services during an attack.” Sentry MBA includes features to bypass website security controls, such as CAPTCHA challenges and web application firewalls. Hacking tool downloads from underground forums are increasing, and the tools are becoming more sophisticated low-level hackers are gaining access to hacked versions of sophisticated tools access broking is growing and existing tools are repurposed for more aggressive attacks.Īn example of hacked malware was discovered when researchers detected a user downloading a cracked copy of the credential stuffing tool Sentry MBA from a Turkish-language cracking forum.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |