Monday, June 27, 2022
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Security

PingPull Is A New Trojan That Targets Telecom, Finance, Government Entities

Or at least operated by hacker group GALLIUM that targets said entities.

by Ian Chee
June 23, 2022
NC4 Latest Alert Reveals An Active Cyberattack Campaign Against Malaysian Websites

[Image by Tima Miroshnichenko / Pexels.]

62
SHARES
Share on FacebookShare on Twitter

For cybercriminal groups targeting the average user, it is usually enough that you keep your wits about you and don’t get tricked into exposing yourself. But in some cases, like the group known as GALLIUM, the average person is of no concern, as this group is after the big fish. Specifically, they go after the telecom, finance and government entities, and their new tool to do so is a remote access trojan known as PingPull.

As Palo Alto Networks reports, PingPull sets up a reverse shell on a compromised host, allowing cyber attackers to execute commands remotely. These range from being able to read, write and delete files to moving or copying files while mimicking the original’s creation, write and access times. It can even allow running of commands via cmd.exe remotely.

The report also says that GALLIUM has three variants of PingPull that are functionally the same, but use different communication protocols – ICMP, HTTP(S) and raw TCP. According to the report, few organisations implement ICMP traffic inspection on their networks, which makes that particular variant difficult to detect.

ADVERTISEMENT

[Image: Pixabay.]
Going back to GALLIUM, Palo Alto Networks say that the group established its reputation by targeting telecom companies in Southeast Asia, Europe and Africa. The report goes on to say that over the past year, when PingPull was discovered, the group’s victims included financial and government entities in Malaysia, among a list of other countries in Southeast Asia.

It may also be worth mentioning that GALLIUM is also known as Softcell. And on that note, Palo Alto Networks believes it to be a Chinese state-sponsored group. This assumption is made based on not only the group’s geographical targeting and sector-specific focus, but also its use of malware and tactics, techniques and procedures of other known state-backed groups.

(Source: Palo Alto Networks)

Tags: GALLIUMMalwarePingPulltrojan
Updated 3:22 pm, Thu, 23 June 22
Back to top
Share25Tweet16SendShare

ADVERTISEMENT

RELATED ARTICLES

The Importance Of Securing Your Enterprise’s IT Systems From Cyber Threats
Security

The Importance Of Securing Your Enterprise’s IT Systems From Cyber Threats

by Newsdesk
June 20, 2022

The recent COVID-19 pandemic has forced significant changes into the way businesses operate, chief among which is the shift towards...

Read more
StoreHub login access token
Data Breaches

StoreHub Denies Data Leak Claim Involving A Million Users (Update)

by Ian Chee
June 16, 2022

UPDATE : StoreHub has sent us a statement that says that its own internal investigations show that the vulnerability...

Read more
TNG Portal
Security

Touch N Go Portal Reportedly Displays Wrong Account Info To Users

by Chief Chapree
June 1, 2022

Some may not know this but Touch N Go card users can actually obtain the details of their card transactions...

Read more
duckduckgo privacy browser
Internet

DuckDuckGo Caught Allowing Microsoft Trackers Due To Agreement

by Ikmal Rozlan
May 26, 2022

DuckDuckGo, a browser that has built its brand on privacy, has been caught allowing ad trackers from Microsoft. This was...

Read more
Load More
No Result
View All Result

TRENDING TODAY

  1. 1
    E-Hailing

    Gojek Confirms It Will Not Be Entering Malaysia

  2. 2
    News

    Employees Can Apply For Flexible Working Arrangements Starting 1 September

  3. 3
    E-Hailing

    Gojek Might Be Coming To Malaysia As Logo-Bearing Vehicle Spotted In KL

Lowyat.NET

Consumer Tech News & Reviews Malaysia

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

We use cookies to improve your experience. Learn More.