BleepingComputer reports that organizations in the oil, gas, and energy sectors have been compromised with the Golang-based RunnerBeacon backdoor as part of the new OneClik attack campaign, which has three variants, all of which involve the exploitation of the Microsoft ClickOnce tool and various AWS cloud services.
Introduction to Malware Binary Triage (IMBT) Course
Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor.
Enroll Now and Save 10%: Coupon Code MWNEWS10
Note: Affiliate link – your enrollment helps support this platform at no extra cost to you.
Article Link: Microsoft ClickOnce, AWS exploited in critical infrastructure attacks | SC Media