Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Microsoft signed driver called Netfilter, turns out it contained malware
Malware and Vulnerabilities
June 28, 2021
Hackread
When Microsoft observed the rootkit, it was found out that it communicated with Chinese C2 IPs which belong to a company that the US Department of Defense labeled as “Community Chinese Military”.
Read More
Microsoft
Netfilter
Code-signing Process
Third-party Driver
malicious code
Publisher
Previous
Nefilim Ransomware Attack Through a MITRE Att&ck Lens
Incident Response, Learnings
Next
Cisco ASA vulnerability actively exploited after exploi ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/75c8_shutterstock_1141202159.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_180216653.jpg)
