Published on October 19th, 2019 📆 | 6103 Views ⚑
0Malware hackers using steganography in WAV audio files to hide malicious code / Boing Boing
Beware the rogue .wav file.
Two reports published in the last few months indicate that authors of malware programs are using an interesting technique in their attacks.
Researchers report the bad guys are applying steganography techniques to hide malicious code inside .WAV audio files.
âThe novelty in the two recently-published reports is the use of WAV audio files, not seen abused in malware operations until this year, Catalin Cimpanu at ZDNet reports:
The first of these two new malware campaigns abusing WAV files was reported back in June. Symantec security researchers said they spotted a Russian cyber-espionage group known as Waterbug (or Turla) using WAV files to hide and transfer malicious code from their server to already-infected victims.
The second malware campaign was spotted this month by BlackBerry Cylance. In a report published today and shared with ZDNet last week, Cylance said it saw something similar to what Symantec saw a few months before.
But while the Symantec report described a nation-state cyber-espionage operation, Cylance said they saw the WAV steganography technique being abused in a run-of-the-mill crypto-mining malware operation.
Cylance said this particular threat actor was hiding DLLs inside WAV audio files. Malware already-present on the infected host would download and read the WAV file, extract the DLL bit by bit, and then run it, installing a cryptocurrency miner application named XMRrig.
Josh Lemos, VP of Research and Intelligence at BlackBerry Cylance, told ZDNet in an email yesterday that this malware strain using WAV steganography was spotted on both Windows desktop and server instances.
WAV audio files are now being used to hide malicious code
[zdnet via techmeme.com]
Canadian camouflage developer HyperStealth Biotechnology Corp released a series of videos demonstrating their new âpatent-pendingâ âQuantum Stealth Light Bending Material (Invisibility Cloak).â Here is HyperStealthâs technical video about the technology and their press release.
READ THE REST
MacRumors, which is usually correct, reports on China Economic Dailyâs news of the imminent launch of Apple AirPods Pro with noise-cancelling functionality and a $260 price. The new AirPods Pro wonât look anything like the image above, although itâd be cool if they did. From MacRumors: According to China Economic Daily, Appleâs third-generation âAirPodsâ will [âŚ]
READ THE REST
Apple canât seem to figure out how to kowtow to China without losing face in the US.
READ THE REST
People tend to keep luggage around for a long time. And why not? New suitcases are pricey, and no matter how banged up or patched up that old bag gets, it still holds your clothes. Right? Maybe not. Here are 15 travel bags and accessories that make a strong case for upgrading your gear. Theyâve [âŚ]
READ THE REST
Do you own a Mac? Unless youâre using it for a paperweight, you almost canât afford not to get the Magnificent Mac Bundle. Itâs a roundup of some truly essential security and file management apps, bundled up with great photo and video enhancers. The best part is that all nine apps are potentially available for [âŚ]
READ THE REST
As much as vaping has taken over the market during the last decade, thereâs still a lot of questions about the technology, as well as health concerns that weâre just now finding out about. One thing you can say about smoking: You know exactly what youâre getting, especially when it comes to pipes that you [âŚ]
READ THE REST
Gloss