The DOJ Recovers Bitcoin Worth $3.6 Billion, SIM Swap Attacks Rise, Antlion Attacks Taiwanese Businesses, Backdoor Trojan Attacks macOS Vulnerability

Researchers from Symantec found that the Chinese state-sponsored threat group Antlion targeted at least six Taiwanese financial firms over the past 18 months. The cyber-espionage group installed a customized backdoor called xPack on compromised systems to exfiltrate sensitive data from these institutions. The xPack backdoor gave attackers extensive access by issuing Windows Management Instrumentation (WMI) commands remotely. Once inside, Antlion attackers maintained a long-term presence inside the victim institutions’ networks, staying active for up to eight months in some cases.

Leave a Reply

This site uses cookies to offer you a better browsing experience. By browsing this website, you agree to our use of cookies.