Beware Of Fake Error Pages That Linux And Windows Systems With Platform-Specific Malware - Cybernoz - Cybersecurity News

Beware Of Fake Error Pages That Linux And Windows Systems With Platform-Specific Malware - Cybernoz - Cybersecurity News

A new wave of cryptojacking attacks is exploiting the humble 404 error page to sneak malicious binaries past defenders Dubbed “Soco404,” the campaign embeds base64-encoded payloads inside seemingly innocuous error screens hosted on Google Sites and compromised Tomcat servers, then detonates them on both Linux and Windows hosts. Because the malicious content is tucked between normal HTML tags, traditional URL filtering and static scanners often m…

Beware of Fake Error Pages Deploying Platform-Specific Malware on Linux and Windows Systems

Wiz Research has uncovered an active cryptomining campaign, dubbed Soco404, that exploits misconfigurations in PostgreSQL databases and other cloud services to deploy platform-specific malware on both Linux and Windows systems. This operation, part of a broader crypto-scam infrastructure, leverages opportunistic scanning for exposed services, abusing features like PostgreSQL’s COPY FROM PROGRAM for remote code execution […] The post Beware of Fa…

Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks

Threat hunters have disclosed two different malware campaigns that have targeted vulnerabilities and misconfigurations across cloud environments to deliver cryptocurrency miners. The threat activity clusters have been codenamed Soco404 and Koske by cloud security firms Wiz and Aqua, respectively. Soco404 "targets both Linux and Windows systems, deploying platform-specific malware," Wiz