Chinese Hackers Bring a New Security Threat Like Cobalt Strike—Attacks Prominent Now .

Rust Coding



There is a new significant threat in the security infrastructure now, and it comes from an unknown group of Chinese Hackers that brings a dangerous attack on the world. The modus of the group remains unknown, and the only information researchers have now is that they have a similar framework to the infamous Cobalt Strike virus in this case. 

Chinese Hackers Bring New Threats-Like Cobalt Strike

Qbot Botnet Deploys Malware Payloads Through Malicious Windows Installers
(Photo : Philipp Katzenberger from Unsplash)

Bleeping Computer reported that a new Chinese hacking group is enacting its virus against the public, and it focuses on a framework called "Manjusaka," which is a dangerous threat for all. Cisco Talos discovered the new threat from the Chinese group, and they said that it resembles the former notorious framework, Cobalt Strike.

Like Cobalt Strike, Manjusaka employs a series of similar remote access trojan (RAT) which brings file access, command execution, network reconnaissance, and more actions against the user. Moreover, it hides in fake COVID-19 notices and reports that mainly center on Golmud City in Tibet, and clicking on it may infect the device. 

Manjusaka is written in the cross-platform Rust programming language and uses the GoLang binaries. 

Read Also: US Federal Courts Data Breach: Justice Department Investigates Records System Cyberattack

What is Cobalt Strike and How Dangerous Is It?

According to Malwarebytes, Cobalt Strike is a trojan penetration testing tool that threat actors use to infect or victimize a said system and proceed to their vendetta against their prey. It is a dangerous tool as it was an effective one when it was first discovered by researchers, infecting a massive number of users in the public landscape, while masquerading as an important service. 

Hackers and the Security Infrastructure Now

Different security measures are in place to help and avoid any breaches or attacks that many threats bring to the world, and these are fulfilled by technology companies available now. There was one update by the Microsoft Office that blocks malware and other security threats, but it did not prevent threat actors from finding new ways to access it for their vendettas

As the world expands more on technology and focuses on bringing more for the world to experience in the latest tech landscape, hackers and other forms of criminals are getting more clever in the way they attack. 

Even getting calls or text messages from wrong numbers or those using random ones to contact different people or insert their links that focus on malware or virus for devices already bring significant threat to all. Agencies like the FCC, FBI, and more are already looking into preventing it in the future. 

Hackers come from different nations, and of varying sizes as they may be a guild of threat actors or one individual that is enacting their systems to bait and trap users. These Chinese hackers are something that monitoring agencies focus on, especially when using the significant framework for their attacks, including that of the Cobalt Strike.

Related Article: Android Banking Malware: 17 Google Play Android Apps Could Steal Your Password

This article is owned by TechTimes

Written by Isaiah Richard 

ⓒ 2022 All rights reserved. Do not reproduce without permission.