RDP

  • Blog
    digitpatrox2 weeks ago
    25

    Kimsuky hackers use new custom RDP Wrapper for remote access

    The North Korean hacking group known as Kimsuky was observed in recent attacks using a custom-built RDP Wrapper and proxy tools to directly access infected machines. This is a sign of shifting tactics for Kimsuky, according to AhnLab SEcurity Intelligence Center (ASEC), who discovered the campaign. ASEC says the North Korean hackers now use a diverse set of customized remote…

    Read More »
  • Blog
    digitpatroxDecember 18, 2024
    67

    Russian hackers use RDP proxies to steal data in MiTM attacks

    The Russian hacking group tracked as APT29 (aka “Midnight Blizzard”) is using a network of 193 remote desktop protocol proxy servers to perform man-in-the-middle (MiTM) attacks to steal data and credentials and to install malicious payloads. The MiTM attacks utilized the PyRDP red team proxy tool to scan the victims’ filesystems, steal data in the background, and remotely execute rogue applications…

    Read More »
Back to top button
close