MALIKA KAROUM

MALIKA KAROUM

  • Home
  • Inleiding
  • Unite Arab Emirates
  • Blog
  • video’s
  • Promotion
    • Worth for free now
    • Work from Home 2023
    • Gadgets
    • All about Windows
    • about Whatsapp
    • Whats the
    • About websites
    • New Ways
    • New Way of Watching
    • Virtual
    • Website
    • All about Video
    • How to Use
    • YouTube Info
    • All about Twitter
    • The Best of
    • About Apps
    • Google News
    • For Free
    • About This
    • Need More
    • Why should you
    • Iphone news
    • Interesting News
    • About Amazone
    • Some tips
    • About Netflix
    • All about Music
    • About Facebook
  • Marketing
    • Malika Karoum Strategie Modules
    • Malika Karoum Online Marketing
    • Malika Karoum Business Service
    • Malika Karoum Marketing Platform
    • Online business marketing
  • Luxury
    • The Indulgence Business site
    • The Luxury Web site
    • The Ultimate Indulgence
    • The Indulgence Site
    • The Ultimate Luxury Information site
    • Online luxury
  • Malika Karoum
    • Malika Karoum LinkedIn
    • Malika Karoum Facebook
    • Malika Karoum Instagram
    • Malika Karoum Business News
    • Adverteren grote fraude
    • Menu POS
    • Malika Karoum Evenementen
  • Security
  • Malika Karoum link
  • Home
  • Malika Karoum Global News
  • Microsoft Reveals 3 New Malware Variants Relating to SolarWinds Cyberattack
February 3, 2023

Microsoft Reveals 3 New Malware Variants Relating to SolarWinds Cyberattack

Microsoft Reveals 3 New Malware Variants Relating to SolarWinds Cyberattack

by Malika Karoum / Sunday, 07 March 2021 / Published in Malika Karoum Global News

Microsoft has revealed three newly found malware variants relating to the SolarWinds cyberattack. At the same time, it has also given the threat actor behind SolarWinds a specific tracking name: Nobelium.

The newly disclosed information provides more insight into the enormous cyberattack that claimed multiple US government agencies in its victim list.

Microsoft Reveals Multiple Malware Variants

In a recent post to its official Microsoft Security blog, the company revealed the discovery of three additional malware types relating to the SolarWinds cyberattack: GoldMax, Sibot, and GoldFinder.

Microsoft assesses that the newly surfaced pieces of malware were used by the actor to maintain persistence and perform actions on very specific and targeted networks post-compromise, even evading initial detection during incident response.

The new malware variants were used in the latter stages of the SolarWinds attack. According to the Microsoft security team, the new attack tools and malware types were found to be in use between August and September 2020 but may have “been on compromised systems as early as June 2020.”

Furthermore, these entirely new types of malware are “unique to this actor” and “tailor-made for specific networks,” while each variant has different capabilities.

  • GoldMax: GoldMax is written in Go and acts as a command and control backdoor that hides malicious activities on the target computer. As found with the SolarWinds attack, GoldMax can generate decoy network traffic to disguise its malicious network traffic, giving it the appearance of regular traffic.
  • Sibot: Sibot is a VBScript-based dual-purpose malware that maintains a persistent presence on the target network and to download and execute a malicious payload. Microsoft notes that there are three variants of the Sibot malware, all of which have slightly different functionality.
  • GoldFinder: This malware is also written in Go. Microsoft believes it was “used as a custom HTTP tracer tool” for logging server addresses and other infrastructure involved in the cyberattack.

Related: Microsoft Reveals Actual Target of SolarWinds Cyberattack

There’s More to Come from SolarWinds

Although Microsoft believes the attack phase of SolarWinds is likely finished, more of the underlying infrastructure and malware variants involved in the attack are still waiting for discovery.

With this actor’s established pattern of using unique infrastructure and tooling for each target, and the operational value of maintaining their persistence on compromised networks, it is likely that additional components will be discovered as our investigation into the actions of this threat actor continues.

The revelation that more malware types and more infrastructure are yet to be found won’t come as a surprise to those tracking this ongoing saga. Recently, Microsoft revealed the SolarWinds second phase, detailing how the attackers accessed networks and maintained a presence for the lengthy period they remained undetected.

MUO – Feed

  • Tweet
Tagged under: Cyberattack, Malware, Microsoft, Relating, Reveals, SolarWinds, Variants

About Malika Karoum

What you can read next

8 Lesser-Known Chrome Extensions You Probably Didn’t Know You Needed
6 Fun Ways to Personalize Your iPhone and Help It Stand Out
How to Use Conditional Formatting in Numbers on Mac

Malika Karoum Blog 2023

  • How to Delete the Last 15 Minutes of Your Google Search History

    There’s a quick way for you to clear your...
  • Lenovo Wants You to Know Its Yoga Pad Pro Can Be Used as a Portable Switch Display

    Sometimes, when playing with your Nintendo Swit...
  • The 5 Best Apps for Buying and Selling Pre-Owned Books

    We’ve all been at the point where we have...
  • Humble’s Recent "Heal Covid-19" Bundle Raised 1.2 Million for Charity

    To help raise money for COVID-19 relief in Indi...
  • Nintendo Partners With PlayVS to Make Its Games Recognized High School Varsity Athletics

    It’s odd—Nintendo gets a lot of flak for ...
  • The Pros and Cons of Playing Video Games on an Emulator

    If you’re a fan of playing retro video ga...
  • 5 Curators to Find the Best Articles Worth Reading on the Internet

    When anyone and everyone is a publisher, it isn...
  • Apple Could Unveil iPads With OLED Screens in 2023

    Apple only just switched from LCD to mini-LED d...
  • What Is Signal and How Does It Work?

    The chances are that you use at least one of th...
  • Samsung’s Upcoming Flagship Exynos Chipset Will Feature AMD’s RDNA2 GPU

    AMD confirmed its partnership with Samsung at C...
  • Atari Finally Reveals the Launch Date for the New Atari VCS Console

    At last, after what seems like an age (it pract...
  • Twitter Starts Testing Full-Screen Ads in Fleets

    Twitter has announced that it will be adding fu...
  • When Is Facebook Messenger Going to Offer End-to-End Encryption?

    Facebook Messenger is easy to use and has great...
  • Get Paid to Play Apps: How They Work and What You Risk

    You’ve probably seen advertisements for a...
  • When Will PS5 Production Ensure Supply Meets Demand?

    Despite the PS5’s launch taking place in ...
  • How to Manage Processes on Ubuntu Using System Monitor

    Linux, like most modern operating systems, is v...
  • How to Get Verified on Twitter and Finally Get That Blue Check Mark

    Twitter, like most social media platforms, offe...
  • 10 Street Photography Tips That Will Make You a Better Photographer

    Street photography is enjoyed by many enthusias...
  • Huawei Freebuds 4i Review: Quality ANC Earbuds for $100

    Huawei Freebuds 4i 8.00 / 10 Read Reviews Read ...
  • What Is Extended Reality (XR) and How Does It Work?

    We’re living in a digital age where the virtual...

MALIKA KAROUM ONLINE MARKETING PLATFORM

Office:
RME HOLDINGS SARL – DUBAI BRANCH

BUSINESS CENTER

Parcel ID: 345-835

Area: Bur Dubai

Sub Area: Burj Khalifa

UNITED ARAB EMIRATES

 

 

 

Malika Karoum Concept

Malika Karoum Projects

  • GET SOCIAL

© 2014 Malika Karoum -United Arab Emirate Dubai- All Rights Reserved

TOP