AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Is vlc media player safe11/6/2023 This was confirmed by a member of Symantec's Threat Hunter Team, in a statement released to Bleeping Computer. The second section of the report (highlighted in the image) mentions that attackers needed access to the victim machines, before they could launch the malware attack. The rest of the report should be taken into context. This is not correct, VLC is not the reason for the malware attacks like these websites allege. This statement's wording is quite confusing, and was misinterpreted by some blogs, who wrote that VLC is vulnerable and that hackers are using it to launch malware attacks. "The attackers also exploit the legitimate VLC Media Player by launching a custom loader via the VLC Exports function, and use the WinVNC tool for remote control of victim machines." Symantec's Security Threat Intelligence blog mentions the following statement. One of these tools is a modified version of the popular open source media player, VLC. Hackers distributed a modified version of VLC to use it for triggering a custom malware loader The hackers use various tools in addition to a custom loader, and a backdoor called Sodamaster. Attackers are targeting victims via Microsoft Exchange Servers in unpatched system deployments, to gain access to their machines. It was active in February 2022, and could still be ongoing. The malware attack campaign, called Cicada or APT10, was first tracked last year. Symantec says that the campaign primarily targeted victims in government-related institutions or NGOs in education and religion, telecom, legal and pharmaceutical sectors. The Broadcom-owned company, which makes Norton Antivirus, revealed that a group of hackers, which it claims are affiliated to the Chinese government, were conducting cyber-espionage campaigns targeting organizations across the world.
0 Comments
Read More
Leave a Reply. |