Skip to main content

Dropbox used as command and control for Taiwan time bomb

posted onJune 30, 2014
by l33tdawg

A remote access trojan (RAT) is using Dropbox for command and control in a targeted attack against the Taiwanese Government, malware analyst Maersk Menrige says.

The upgraded PlugX RAT is the first targeted attack to use Dropbox to update command and control settings, Menrige said, as distinct from other malware and ransomware which used the popular cloud storage platform to fling malicious files at victims.

The trojan logs a victim's keystrokes, maps ports and opens remote shells to facilitate further data theft and exploitation. "The use of Dropbox aids in masking the malicious traffic in the network because this is a legitimate website for storing files and documents," Trend Micro's Menrige said.

Source

Tags

Dropbox Security

You May Also Like

Recent News

Friday, November 29th

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th