KuwaitPR.com, Online Press Release from Kuwait
Computer Software(Technology)
Filter PR by
Media Alert: Unit 42 Analysis Kuwaiti Organization's Webpage Used in Security Exploit
Media Alert: Unit 42 Analysis  Kuwaiti Organization's Webpage Used in Security Exploit

xHunt campaign: New watering hole identified for credential harvesting


February 03, 2020:   Researchers from Unit 42, the threat intelligence arm of Palo Alto Networks, recently identified a Kuwaiti organization’s webpage used as an apparent watering hole. The discovery was made during analysis of xHunt campaign activities. The webpage contained a hidden image which was observed between June and December 2019, and referenced domains associated with malicious activity conducted by the xHunt campaign operators.

Unit 42 believes that the same threat actors involved in the Hisoka attack campaign compromised and injected this HTML code into this website in an attempt to harvest credentials from the website’s visitors; specifically, gathering account names and password hashes. While Unit 42 cannot confirm this, it is possible that the actors intended to crack these hashes to obtain the visitor’s passwords or using the hashes gathered to carry out relay attacks to gain access to additional systems.

If successful in harvesting account credentials, the compromised data has a plethora of uses for the attackers and can allow them to breach an organization to steal sensitive information. Furthermore, because they’d be using trusted credentials, it can allow attackers to go undetected for long periods of time, enabling them to infiltrate other parts of an organization and even implement backdoors, like RATs, to get back into a system even after being removed. This can result in significant damage to an organization over a prolonged period of time.

During this same timeframe, Unit 42 observed an indication of DNS redirect activity on infrastructure used by these same operators. The domains observed in redirect activity primarily contained subdomains referencing an association with their organizational email servers further implying an interest in user credential harvesting.


Posted by : Kuwait PR Network Editorial Team
Viewed 3922 times
PR Category : Technology
Posted on : Monday, February 3, 2020  3:18:00 PM UAE local time (GMT+4)
Email this article Print this article

Share this article with your friends and followers
Back to Section Home

Related Stories

Most Viewed Press Release posted in the last 7 days
AIGNER - Mother's Day [20110-Views]
Cerruti 1881 - Special Product Launch for Mother's Day [19258-Views]
Sephora: Are You Ready to Join the #SephoraSquad? [18946-Views]
Why User Experience is Essential for Travel Business Growth? [17843-Views]
TBO Holidays Hotel XML API Integrated with TassPro and Itinerary HomePR & EventsTBO Holidays Hotel X... [17355-Views]
Rate Hawk is Live with Global Innovations Flagship Product TassPro and Itinerary [15080-Views]
Discover the Secret to Radiant Skin [14362-Views]
Expedia Partner Solutions (EPS) Partnered with Global Innovations [14297-Views]
Darussalam Launches New Website to Increase Market Reach [13325-Views]
The Season of Fashion Revival with AIGNER [10439-Views]
Trade Bank of Iraq Showcases Investment Opportunities in Iraq at Global Trade Review MENA 2020 Summi... [8376-Views]
Kristina Fidelskaya Press Release AW2020 [7786-Views]
Kuwait Lands UAE Aquabikes Pro' Victory as Hammadi Secures Double Title Success [6470-Views]
Ortendahl Makes Team Abu Dhabi Debut in Kuwait as Al Mulla Launches Bid for Third World Title [6343-Views]
Team Abu Dhabi Riders Grab Double Triumph On Dramatic Race Day in Kuwait [6277-Views]
Infiniti Al Babtain Announces 2019 National Sales and Service Skills Contest Winners [5941-Views]
More Celebrations With NISSAN Al-Babtain Offers [4719-Views]
Peugeot Kuwait Announces Irresistable Leasing Scheme [4313-Views]
2020 INFINITI QX80 Wins Kelley Blue Book 5-Year Cost To Own Award [3805-Views]
ASAR Al Ruwayeh & Partners Acts as Kuwait Legal Counsel to the Consortium of WTE Wassertechnik Gmb... [3665-Views]
RSS Facebook Twitter LinkedDin
Top Sections
Top Stories