Servers Webhosting
Login
Join now, it's FREE!
Get Notifications
/ Categories RSS Subscribe NOW!
1.1.webhosting 5g adobe.company adobe.player affiliate.market affiliate.webhos ai ai.in.threat.det ai.models alerta amanda antivirus.softwa apache app.store.fees apple arch artificial.intel australia backup.soluiton backup.solutions backup.system backup.tools backuppc bacula bad.webhosting bareos.backup barman.data.reco beginner.s.guide benefits best.python.libr big.data binance bkex.suspension blade.server101 blockchain blogging bonded.adsl bored.ape.justin bup burp.backup business business.ai.vc-b business.blockch business.cloud.h business.intelli business.start-u business.vr.ar.a businesses ccna.certificati ccnp.certificati chatgpt cheap.webhosting check.mk china cisco clean.energy clean.energy.rac cloud.business cloud.computing cloud.failure.pr cloud.hosting cloud.server clustering clustering.techn coding computer.clustri computer.protect connection.pooli corona.virus cpanel cpanel.cons cpanel.hosting cpanel.pros cpanel.reseller cpanel.tutorial cpanel.unlimited cpu.performance creating.strong crypto.punk cryptocurrency cyber.security cyber.threats cybersecurity cybersecurity.ri dangerous.cyber data-exposed data.backup data.mining data.recovery data.scientists data.synchroniza ddos ddosia.attack decentralized dedicated.hostin dedicated.server dedicated.webhos defend.against.c degrees descentralized.i developer.freedo django dns.resolution domain.registrat donald.trump.nft dreamhost duplicity earn.money ecommerce.webhos efficient.and.cl electric.cars email.account email.support emerging.cyber.t error essential.linux firewall.rules flapjack fluhorse fortify.smart.ho free.webhosting freefilesync fuel.efficient.c gamer.server.pro games.nvidia golang good.webhosting google google.apps gpus green.energy hack-resistant.p hacker.attack hmtl hongkong hostgator hosting hosting.benefits how.to.use.linux how.to.use.pytho html html-smuggling hydrogen.fuel.ce inhouse.server internet.of.thin iot jpm.coin kali.linux laundering.inves letmespy linkedin linux linux.commands linux.guide linux.installtio linux.reseller.h linux.webhosting literature.surve load.balancing load.balancing.t load.test lsyncd malware manged.hosting manjaro maxcdn meta-analysis metamask metaverse minecraft minecraft.server miniorange mobile.app mobile.security money monitoring.tools multiple.server mysql.cluster natural.gas natural.gas.2023 nethunter nft nvidia ohio-blockchain online.security openssh opportunity optimization overselling password.securit payments personal.compute pfsense phishing.attacks plattforms preventing.hacke programming.lang protect.confiden protect.your.cha protect.yourself proxy python.for.begin python.for.data python.for.machi python.libraries python.web.devel renewable.energy reseller.hosting restic review ruby.on.rails runner.software safeguard.confid sec.sues.binance secret.tricks.fo secure.wifi semiconductors seo server.basic server.clusterin server.downtime server.hosting server.license server.virtualiz shared.hosting shared.webhostin shockbyte single.server smartphone.secur snebu social.marketing social.media social.networkin software.develop softwares solar.array sql.server ssl.certificate sub.domain.confi swap switch.webhostin system.adminstra tablet.security technology technology.ntfli tesla tether tutorial twiter twitter.technolo urbackup virtual.machine virtual.server virtualization virtualization.t vps vps.providers vps.server vps.webhosting vulnerabilities vulnerability web.3.0 web.design web.development web.hosting web.hosting.supp web.load.balanci web.mangement web.server web.toolset web3 webhosting webhosting.coupo webhosting.featu webhosting.photo webhosting.plan webhosting.resel webserver webserver.log website windows windows.computer windows.reseller windows.server windows.server.2 windows.server20 wireless woocomerce wordpress wordpress.featur wordpress.hostin worldcoin worldcoin.crypto xfce yahoo zbackup zero-day.attacks zero-emission.en
Categories Topics

Chinese Hackers Use New Technique to Infiltrate European Ministries RSS
0

#296 Last edited: 05.07.2023 by nek84, read: 746 times

Chinese Hackers Use New Technique to Infiltrate European Ministries

"Here's How to Protect Yourself"

Meta Description: Chinese hackers use HTML smuggling to deliver malicious payloads to European ministries. Learn how to protect yourself from this new and emerging threat.

HTML-smuggling

Jul 4, 2023

A group of Chinese hackers has been using a new technique to infiltrate European ministries, according to a report by Check Point Research. The hackers are using a technique called HTML smuggling to deliver malicious payloads inside HTML documents.

What is HTML smuggling?

HTML smuggling is a technique that allows attackers to bypass security filters by embedding malicious code in the data attributes of HTML elements. This code is then executed when the document is opened in a web browser.

The data attributes of HTML elements are used to store additional information about the element, such as its size, color, or position. This information is typically not visible to the user, but it can be accessed by attackers who know how to exploit the vulnerability.

How do the Chinese hackers use HTML smuggling?

The Chinese hackers are using HTML smuggling to deliver a new variant of the PlugX remote access trojan. PlugX is a modular malware that can be used for a variety of purposes, including espionage and data theft.

The hackers are targeting Foreign Affairs ministries and embassies in Europe. They are sending spear-phishing emails that contain malicious HTML documents. When the documents are opened, the malicious code is executed and the PlugX trojan is installed on the victim's computer.

The Check Point researchers have identified two infection chains that are used by the hackers. In one chain, the malicious code deploys a malicious LNK file inside a ZIP file. In the other chain, the malicious code fetches an MSI file from a remote server.

How to protect yourself from HTML smuggling attacks

There are a number of steps that organizations can take to protect themselves from HTML smuggling attacks. These include:

  • Use a security solution that can detect and block HTML smuggling attacks. There are a number of security solutions available that can detect and block HTML smuggling attacks. These solutions typically use a combination of techniques, such as signature-based detection, behavioral analysis, and sandboxing.

  • Train employees to be aware of the threat and to be careful about opening suspicious emails. Employees should be trained to be aware of the HTML smuggling threat and to be careful about opening suspicious emails. They should also be trained to report any suspicious emails to IT security staff.

  • Keep web browsers and operating systems up to date with the latest security patches. Software vendors typically release security patches to address vulnerabilities that can be exploited by HTML smuggling attacks. Organizations should keep their web browsers and operating systems up to date with the latest security patches to help protect themselves from these attacks.

Additional information

In addition to the steps listed above, organizations can also take the following measures to protect themselves from HTML smuggling attacks:

  • Use a web browser that has been patched for known HTML smuggling vulnerabilities. Some web browsers have been patched for known HTML smuggling vulnerabilities. Organizations should use a web browser that has been patched for these vulnerabilities to help protect themselves from these attacks.

  • Enable Content Security Policy (CSP) in web browsers. CSP can help to prevent malicious code from being executed in HTML documents. Organizations should enable CSP in their web browsers to help protect themselves from these attacks.

  • Use a firewall that can block malicious traffic. A firewall can be used to block malicious traffic that is associated with HTML smuggling attacks. Organizations should use a firewall that can block this traffic to help protect themselves from these attacks.

Conclusion

HTML smuggling is a new and emerging threat that organizations need to be aware of. By taking the steps outlined in this article, organizations can help to protect themselves from this threat.

Updates

  • Since this article was written, there have been additional developments in the HTML smuggling threat landscape. For example, researchers have discovered new ways that attackers can exploit HTML smuggling to deliver malicious payloads.

  • Organizations should stay up-to-date on the latest developments in the HTML smuggling threat landscape by subscribing to security mailing lists and following security blogs.

  • Organizations should also regularly review their security policies and procedures to ensure that they are taking all necessary steps to protect themselves from HTML smuggling attacks.

Extra Tags:

HTML smuggling, Chinese hackers, European ministries, PlugX remote access trojan, Spear-phishing emails, Malicious payloads, Content Security Policy (CSP)

Categories Topics

Chinese Hackers Use New Technique to Infiltrate European Ministries RSS
0

Servers Webhosting - Professional Server Solutions Forum

Join a thriving community of web hosting professionals and enthusiasts.

Discuss industry trends, server management, security, optimization, and more.

Connect with experts and beginners alike in the world of web hosting!

Join now


About Us Terms of Use Privacy Policy bbcodes Business directory Contact Us Donation

Copyright© ServersWebhosting 2023-24 all rights reserved. TOS and Privacy Policy.
All trademarks and copyrights held by respective owners.