Posted By: 360view
Chinese hackers trying new trick with legit websites - 10/17/20 09:05 PM
https://www.theverge.com/2020/10/17/21520799/google-chinese-hackers-biden-campaign-mcafee-malware
Sample quote
The group, which Google refers to as APT 31 (short for Advanced Persistent Threat), would email links to users which would download malware hosted on GitHub, allowing the attacker to upload and download files and execute commands. Since the group used services like GitHub and Dropbox to carry out the attacks, it made it more difficult to track them.
“Every malicious piece of this attack was hosted on legitimate services,
making it harder for defenders to rely on network signals for detection,”
the head of Google’s Threat Analysis Group Shane Huntley wrote in the blog post.
End quote
Sample quote
The group, which Google refers to as APT 31 (short for Advanced Persistent Threat), would email links to users which would download malware hosted on GitHub, allowing the attacker to upload and download files and execute commands. Since the group used services like GitHub and Dropbox to carry out the attacks, it made it more difficult to track them.
“Every malicious piece of this attack was hosted on legitimate services,
making it harder for defenders to rely on network signals for detection,”
the head of Google’s Threat Analysis Group Shane Huntley wrote in the blog post.
End quote