Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Malware that specializes in eavesdropping and sabotage is discovered hiding on Telegram
A new cybersecurity threat has just been discovered by experts, using the popular messaging app Telegram as a "base" to carry out destructive acts. This Golang malware not only has the ability to eavesdrop, but can also spread itself and execute many other dangerous commands.
Researchers from Netskope have discovered a backdoor built in the Golang programming language. Notably, this backdoor uses Telegram as a command and control (C2) station. Instead of using complex servers, the attackers leverage Telegram to send commands and receive information from the backdoor.
Telegram is the "base" of Golang malware to carry out destructive acts.
Specifically, this backdoor creates a Telegram bot via Botfather, then uses this bot to continuously listen for commands sent from a Telegram chat. Before performing any action, the backdoor checks the validity of the command.
The use of Telegram as a C2 channel makes it extremely difficult to detect and block this backdoor. It is difficult for security experts to differentiate between malicious and normal information flows on Telegram.
'While using cloud applications as a C2 channel is not something we see every day, it is a very effective method used by attackers not only because it does not require deploying an entire infrastructure for it, making the attacker's life easier, but also because it is very difficult, from a defense perspective, to differentiate between what is a normal user using the API and what is C2 communication,' Netskope said.
In addition to Telegram, threat actors often use other cloud services such as OneDrive, GitHub, Dropbox, etc. to carry out attacks. Netskope did not disclose the number of potential victims, but emphasized that this malware is most likely of Russian origin.
The emergence of this Golang backdoor is a warning about the potential risks from familiar applications. Users need to be vigilant, update security software regularly, and not open suspicious links or files.
Samuel DanielYou should read it
- What is Golang? Things you need to know about Golang programming language
- What is backdoor?
- Top 12 most dangerous backdoor in computer history
- Instructions for using free chat software Telegram on your computer
- What is the difference between Go and Java?
- How to create basic program in Golang
- Detection of new utility backdoor leaves many Linux distributions vulnerable to attacks
- 10 tips to use Telegram safely and securely
May be interested
- How to make a voice or video call on Telegram
the early days of 2021 are witnessing the rise of multi-platform messaging applications focusing on user privacy, which is typical of which is telegram. telegram voice and video calls are tightly end-to-end encrypted. - Top 5 messaging apps to replace Telegramthe need to find a messaging application similar to telegram is very high, when many people do not want to use additional vpn applications on their phones due to battery drain.
- How to sabotage lights in Among Ussabotage - vandalism is what an imposter can do in among us, done at the right time makes it affect all players, not just crewmate. here is how to turn off lights in among us is very simple.
- Telegram and Telegram X suddenly disappeared from the App Storetelegram and telegram x were suddenly deleted from the app store without knowing why.
- How to Use Perplexity in Telegramyou can now access the perplexity ai chatbot in telegram to message and ask anything you want, even add it to groups to provide information to group members.
- 5 best Telegram desktop clientsbelow are the telegram desktop applications for windows, macos and linux. all are great telegram alternatives.
- How to turn off notifications when someone in your contacts joins Telegramjust like most other cross-platform online messaging apps, by default, telegram will sync your contacts with the platform's server.
- Pavel Durov's 'rogue' life, CEO Telegram, who has just spoken out about the management of Tim Cookthe world is almost unknown where pavel durov is staying, and cannot convince investment cooperation. his life is as mysterious as the telegram application itself.
- Instructions for deleting groups on Telegramwhen you delete a group on telegram, you will no longer receive messages from that group. and group members will also not be able to access the group on telegram.
- How to hide Telegram group members listwhen creating a telegram group, the group admin has the option to hide the group member list, so that only the admin can see it. members in the telegram group will not be able to see this list.
Attack the network
- Just 5 minutes to understand what is IDS? IDS VS IPS and Firewall
- iPhone users confused by strange sounds
- Those who regularly use VPNs should be careful, Google warns
- Signal - Inviolable App or Promised Land for Criminals?
- Risk of phone control from bank account number
- Apple: Security flaw in iPhone's USB-C port is not a concern
Just 5 minutes to understand what is IDS? IDS VS IPS and Firewall
iPhone users confused by strange sounds
Those who regularly use VPNs should be careful, Google warns
Signal - Inviolable App or Promised Land for Criminals?
Risk of phone control from bank account number
Apple: Security flaw in iPhone's USB-C port is not a concern