08 2015 Manufacturing Presentation Security 
Security Affairs
MAY 22, 2020
ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. The group behind this activity is the same we identified in the past malicious operations described in Roma225 (12/2018), Hagga (08/2019), Mana (09/2019), YAKKA (01/2020). Introduction.
Krebs on Security
JUNE 25, 2019
com via Domaintools.com shows the domain was assigned in 2015 to a company called “ Shanghai Blazefire Network Technology Co. com 2000-08-24 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2015-03-09 GODADDY.COM, LLC. That record, from April 2015, lists Chu Da’s email address as yehuo@blazefire.com. 2333youxi[.]com
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Krebs on Security
JUNE 25, 2019
com via Domaintools.com shows the domain was assigned in 2015 to a company called “ Shanghai Blazefire Network Technology Co. com 2000-08-24 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2015-03-09 GODADDY.COM, LLC. That record, from April 2015, lists Chu Da’s email address as yehuo@blazefire.com. 2333youxi[.]com
Security Affairs
APRIL 28, 2020
As shown in the configuration of the job, the malware prepares a different configuration of task scheduling according to the module and file to be executed: “/a/upd” file is run every 23 days (line 28); “/b/sync” every sunday at 08:05AM (line 29) “/b/sync” at the reboot (line 30) “/c/aptitude” every three days (line 31). The “a” Folder.
Expert insights. Personalized for you.
140 
Let's personalize your content