Curly COMrades, a Russian hacker group, has found a way to abuse Microsoft Hyper-V to hide their malicious activities. By deploying a hidden Alpine Linux virtual machine within the Hyper-V environment, they can successfully run malware without triggering endpoint detection and response systems.
This technique not only allows these hackers to execute their malware stealthily, but it also showcases their advanced tactics in bypassing security measures. The use of virtualization to conceal malicious operations highlights a growing trend in cyber threats where traditional security methods may not effectively detect such sophisticated attacks. Organizations must remain vigilant and consider updating their security measures to account for these evolving techniques.
👉 Pročitaj original: BleepingComputer
