https://safirsoft.com Back cover not detected for Windows, macOS, and Linux
SysJoker cross-platform previously unseen from Advanced Threat Player.

Researchers have discovered an invisible wallpaper that was originally written for Windows, macOS, or Linux and was not recognized by it. Almost all malware scanning engines.

Researchers at security firm Intezer say SysJoker - the name behind it - has discovered a "leading educational institution" on a Linux-based web server. While searching the researchers, they also found versions of SysJoker for Windows and macOS. They suspect a multi-platform malware release in the second half of last year.

This discovery is important for several reasons. First, multi-system malware is a rarity, as most malware is written for a specific operating system. The backend was also written from scratch and used four separate command and control servers, indicating that the people who developed and used it were part of an advanced threat agent investing significant resources. It is also unusual to find a malware that has never seen before on Linux in a real attack. The advanced backend capabilities of executable files for both Windows and macOS versions have the extension ts. Antzer said this could be a sign that the file was distributed as a print program after secretly intrusive into the npm javascript repository. Intzer went on to say that SysJoker will appear as a system update.

At the same time, Wardle said, the .ts extension could refer to a file that was disguised as video stream content. It also found that the macOS file was digitally signed, albeit with a private signature. Backdoor Drive creates its own server control domain by decoding a string retrieved from a text file hosted on Google Drive. During the time the researchers were analyzing it, the server was changed three times, indicating that the attacker was active and was monitoring infected machines.

Intezer Ranking Based on Target Organizations and Malware Behavior This is what SysJoker looks for. The targets, most likely intended to "spy with lateral movement that could lead to a ransomware attack as one of the next steps."



https://safirsoft.com The journey of the James Webb Space Telescope to its final orbit was successful

The journey of the James Webb Space Telescope to its final orbit was successful

With the precise deployment of the James Webb Space Telescope in its final orbit, the Lagrangian point halo orbit is the last step in a month-long jou...


https://safirsoft.com The iPhone 15 Pro may come with a display made by the Chinese company BOE

The iPhone 15 Pro may come with a display made by the Chinese company BOE

There have been many rumors in recent months about Apple trying to discard Samsung-made displays. In 2020, there were some reports of the use of scree...

https://safirsoft.com The 9000 Density chipset is likely to make its way into Samsung's Galaxy A series handsets

The 9000 Density chipset is likely to make its way into Samsung's Galaxy A series handsets

Samsung Galaxy S22 series phones will be introduced soon along with Exynos 2200 and Snapdragon 8 generation 1 chips. Meanwhile, it seems that Samsung ...


https://safirsoft.com 8 main reasons for the failure of entrepreneurship and investments

8 main reasons for the failure of entrepreneurship and investments

Entrepreneurship is a really complex subject. If entrepreneurs do not always do their best, they are more likely to fail. Research has shown that more...