![]() ![]() However, throughout the end of 2020 and the beginning of 2021, Guardicore Global Sensors Network (GGSN) detected Purple Fox’s novel spreading technique via indiscriminate port scanning and exploitation of exposed SMB services with weak passwords and hashes.īy leveraging the capabilities of GGSN, we were able to track the spread of Purple Fox. ![]() Purple Fox was discovered in March of 2018 and was covered as an exploit kit targeting Internet Explorer and Windows machines with various privilege escalation exploits. The Purple Fox malware includes a rootkit which allows the threat actors to hide the malware on the machine and make it difficult to detect and remove.ĭuring the last few weeks, the Guardicore Labs team have been tracking a new campaign distributing the Purple Fox malware. ![]() These servers appear to be compromised Microsoft IIS 7.5 servers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |