![]() ![]() Update the Linux distributionĪfter you have set up your user, update the OS. Use the same username that you use on remote Linux/UNIX systems, so you won’t need to specify it in individual configuration files, or every time you run commands like ssh. This UNIX username and password has no relationship to your Windows username and password, and it can be different. The first time you launch a Linux distribution in Windows, you will be prompted to create a UNIX username and password. Please read this blog post for more information. Linux distributions can be installed using a script, or by using the Microsoft Store links below:Īfter installation your Linux distribution will be located at: %localappdata%\lxss\ This directory is marked as a hidden system folder for a very good reason:Īvoid creating and/or modifying files in this location using Windows tools and apps! If you do, it is likely that your Linux files will be corrupted and data loss may occur. Install your Linux distribution of choice It is important that you DO restart when prompted as some of the infrastructure which the Windows Subsystem for Linux requires can only be loaded during Windows’ boot-up sequence. Open a PowerShell prompt as administrator and run: Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Windows-Subsystem-LinuxĪfter enabling Windows Subsystem for Linux From the Start Menu, search for “Turn Windows features on or off” (type ‘turn’).You can enable the feature using a GUI or command-line interface. Enable the Windows Subsystem for Linux feature –-For more Cyber security news in crisp content. ![]() Henos – February/March 2021 Samples SHA-1 Gedit – February/March 2021 Samples SHA-1ĭarkMusical – September 2021 Samples SHA-1 Indicator Of Compromise Gedit – July 2021 Samples SHA-1 Only time will tell if the group’s current TTPs and malware evolve.” Despite its numerous setbacks and that it will press on. The first wave of DarkMusical-related attacks is said to have occurred in June 2021, while Gedit-related campaigns were observed as early as September 2020, only to pick up speed a year later.įurthermore, a fourth set of attacks targeting military organisations in Bangladesh and Sri Lanka between February and March 2021 used a modified version of Gedit codenamed Henos.įinally the researchers concluded that,” With tenacity, the Donot Team compensates for its lack of sophistication. The yty malware framework, which is delivered through weaponized Microsoft Office documents, is a chain of intermediary downloaders that culminates in the execution of a backdoor, which takes care of retrieving additional components capable of harvesting files, recording keystrokes and screenshots, and deploying reverse shells for remote access.ĮSET named the new yty variants DarkMusical and Gedit, with telemetry data indicating attacks from a third variant called Jaca from March to July 2021. While it is common for APT groups to re-attack a previously compromised network by deploying stealthier backdoors to hide their tracks, Donot Team takes a different approach by deploying multiple variants of the malware already in its arsenal. Every two to four months, the Donot Team has been consistently targeting the same entities with waves of spear-phishing emails with malicious attachments.ĭonot Team (also known as APT-C-35 and SectorE02) has been linked to a series of intrusions primarily targeting embassies, governments, and military entities in Bangladesh, Sri Lanka, Pakistan, and Nepal with Windows and Android malware since at least 2016.Īmnesty International discovered evidence linking the threat actor’s attack infrastructure to an Indian cybersecurity firm called Innefu Labs in October 2021, raising concerns that the threat actor may be selling the spyware or offering a hackers-for-hire service to governments in the region. According to the Slovak cybersecurity firm ESET researchers Facundo Muoz and Matas Porolli reported that,” The highly targeted attack was blamed on a hacking group known as Donot Team. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |