ChaosBot is a newly discovered Rust-based backdoor that allows operators to perform reconnaissance and execute arbitrary commands on infected systems. This malware highlights the increasing sophistication of cyber threats, employing advanced programming languages like Rust to enhance its capabilities.
According to eSentire’s technical report, this malware is particularly concerning because it utilizes compromised credentials tied to both Cisco VPN and a highly privileged Active Directory account named ‘serviceaccount.’ The dual exploitation of credentials raises alarms about the security practices in place and emphasizes the need for stronger safeguards and monitoring mechanisms to prevent unauthorized access.
👉 Pročitaj original: The Hacker News
