Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

Blue Mockingbird, a codename that infects enterprise systems


By MYBRANDBOOK


Blue Mockingbird, a codename that infects enterprise systems

Blue Mockingbird, a hacker group is believed to infect thousands of enterprise systems, with a cryptocurrency mining malware. Malware analysts from cloud security firm Red Canary spotted this malware early this month, but the Blue Mockingbird group has been active since December 2019.

 

According to the researchers the Blue Mockingbird attacks public-facing servers that run on ASP.NET apps using the Telerik framework for their user interface (UI) component.

 

The hackers exploited the vulnerability dubbed as CVE-2019-18935 to insert a web shell on the attacked server. A version of the Juicy Potato technique was used to get admin-level access and modify server settings to obtain (re)boot persistence.

 

On attaining complete access to a system, the gang downloaded and installed a version of XMRRig, which is a popular cryptocurrency mining app for the Monero (XMR) cryptocurrency.

 

According to the ex gh weakly-secure RDP (Remote Desktop Protocol) or SMB (Server Message Block) connections.

 

The researchers do not have full details about the botnet’s operations, yet they believe that the botnet must have made at least 1,000 infections so far. They say that the number of companies affected could be much higher, and even companies that are considered to be safe are also at risk of attack.

 

The vulnerable Telerik UI component might be part of ASP.NET applications that are running on their latest versions. But the Telerik component might be outdated posing risk to the companies.

 

The Telerik UI CVE-2019-18935 vulnerability has been listed as one of the most exploited vulnerabilities used to plant web shells on servers.

 

In cases where the organizations do not have an option to update their vulnerable apps, they must ensure that they block exploitation attempts for CVE-2019-18935 at their firewall level. And if they do not have a web firewall, they must check for a compromise at the server and workstation level. 
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

Digitalization and cyberattacks go hand in hand
The demand for touch-less services are on huge demand
Driving remote flexibility: Challenges and resolutions
Capitalising on agility to win the digital banking competition
On the technology aspect Remote Work, is now the buzz word in the Industry
 INTERVIEWS  Placeholder image
Bolstering its commitment to help build a truly self-reliant B

Bolstering its commitment to help build a truly self-reliant B

Cisco building a trusted and resilient future for the nation

Cisco building a trusted and resilient future for the nation

Security is foundational to everything Cisco does and customers insist on e
Delivering Critical Business Communication Solutions to Enterp

Delivering Critical Business Communication Solutions to Enterp

Arya Omnitalk and Syntel’s comprehensive suite of solutions and more than
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
INFOSYS TECHNOLOGIES PVT. LTD.

INFOSYS TECHNOLOGIES PVT. LTD.


CENTRE FOR DEVELOPMENT OF TELEMATICS (C-DOT)

CENTRE FOR DEVELOPMENT OF TELEMATICS (C-DOT)


TEJAS NETWORKS INDIA PVT. LTD.

TEJAS NETWORKS INDIA PVT. LTD.


TALLY SOLUTIONS PVT. LTD.

TALLY SOLUTIONS PVT. LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

HARNESSING THE POWER OF BIG DATA TO GAIN VALUABLE INSIGHTS

A Technology certainly drives innovation and busin...

GAINING CUSTOMERS’ TRUST IS ESSENTIAL FOR SMOOTH OMNICHANNEL INTERACTIONS

In the fiscal year 2024-25, our organization has i...

AI TO IMPROVE INSIGHTS THROUGH AUGMENTED ANALYTICS, WHILE EDGE COMPUTING TO ALLOW REAL-TIME PROCESSING

For the fiscal year 2024-25, our organization has ...

 ICONS OF INDIA  Placeholder image

Icons Of India : MADHABI PURI BUCH

Madhabi Puri Buch is the first-female chairperson of India’s markets...

ICONS OF INDIA : SANDIP PATEL

Sandip Patel is the Managing Director for IBM India & South Asia regio...

Icons Of India : B.V.R. Subrahmanyam

A 1987 batch (Chhattisgarh cadre) Indian Administrative Service Office...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

"We will either find a way or make one"

A provider of high-quality IT products and services, Bluecom Infotech caters t...

Competitively Viable By Ensuring Brand Loyalty & Uniformity

D M Systems always collaborates with top brands and wants to continue the same...

Delivering Innovative Solutions To Address Customer Challenges

Data plays a crucial role in Shivaami Cloud’s brand strategy. It leverages a...

 PSU  Placeholder image

C-DOT - Center of Development of Telematics  

India’s premier research and development center focused on telecommu...

CERT-IN - Indian Computer Emergency Response Team

CERT-In is a national nodal agency for responding to computer security...

GSTN - Goods and Services Tax Network

GSTN provides shared IT infrastructure and service to both central and...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024: TATA CONSULTANCY SERVICES LTD. (TCS)

TCS, a global leader in IT services, consulting, and business solutions, has b...

Most Trusted Brands 2024 : Oracle Corporation 

Oracle focuses on secure enterprise software, and cloud solutions to build str...

Most Trusted Brands 2024 : TECH MAHINDRA

Tech Mahindra positions itself as a company that goes beyond just technology, ...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Vinod Dham, Founder & Executive Managing Partner, IndoUS Venture Partners

Vinod Dham, known as the “Father of the Pentium Chip,” has left an...

Indian Tech Talent Excelling The Tech World - Aman Bhutani, CEO, GoDaddy

Aman Bhutani, the self-taught techie and CEO of GoDaddy, oversees a co...

Indian Tech Talent Excelling The Tech World - Sundar Pichai, CEO- Alphabet Inc.

Sundar Pichai, the CEO of Google and its parent company Alphabet Inc.,...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

Pocket FM Survey reveals Audio as the new Lifestyle

Pocket FM Survey reveals Audio as the new Lifestyle

AVer and Barco Establish Technology Partnership to Enable Unified Collaboration

AVer and Barco Establish Technology Partnership to Enable Unified Collaboration

India’s Smartphone shipment declines sharply

India’s Smartphone shipment declines sharply

ManageEngine study reveals IT democratisation and empowerment pave the way for more Collaborative Workforce

ManageEngine study reveals IT democratisation and empowerment pave the way for more Collaborative Workforce

 UNICORNS REVOLUTIONISING Placeholder image

InCred Financial Services Limited

InCred Financial Services Limited

Merabo Labs Private Limited

Merabo Labs Private Limited

Mindtickle Inc.

Mindtickle Inc.

NTEX Transportation Services Pvt. Ltd.

NTEX Transportation Services Pvt. Ltd.


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW