By Eric Corcoran, Posted in Technology Week in Review
Monday 3/11
Windows malware: Slub taps Slack, GitHub to steal your info
The malware also exploits an even older Windows bug, CVE-2015-1705, a win32k.sys local elevation of privilege flaw that was found to be useful by targeted attackers because it could be used to bypass a Windows application's sandbox. Once a machine has been fully compromised, the backdoor uses a private Slack channel to check commands taken from 'gist' snippets hosted on GitHub, and then sends the commands to a private Slack channel co... read more.