Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Pakistani Government Site Compromised, Logs Visitor Keystrokes

Malware

APakistani government site used as a tracking platform for passport applications has been compromised to deliver a ScanBox framework payload which captures the visitors' machine information and logs their keystrokes.

The breached website is tracking.dgip.gov[.]pk, a sub-domain of theDirectorate General of Immigration & Passport of the Pakistani government.

As previously detailed by AlienVault's researchers in two in-depth examinations of the reconnaissance tool published during 2014 and 2015, the ScanBox framework is a self-contained JavaScript-based keyloggerdesigned to recordusers' keystrokes while they're browsing a website.

Framework was previously used by APT groups

"It was then seen again in 2017 suspected to be used by the Stone Panda APT group, and once more in 2018 in connection with LuckyMouse. With every appearance, it seems to have evolved in terms of the kinds of information it gathers," says Trustwave'sSpiderLabs Research team which discovered the...(continued)

View All Trending Stories