serviços de nuvem da Microsoft Azure tornaram-se uma excelente escolha para cibercriminosos que precisam armazenar o conteúdo em algum lugar malicioso.
From fishing templates to malware and C&servidores de comando C, parece que os atacantes descobriram armazenamento adequado para tudo isso.“Não só é Azure malwares hospedagem, ele também está funcionando como a infra-estrutura de comando e controle para os arquivos maliciosos”, — says David Pickett from AppRiver.
Earlier has already been mentioned connection of cybercriminals with Azure. Por exemplo, sobre 200 fake tech support sites were hosted on this platform. There was also a case where Azure was used to store fishing templates for escritório 365.
It turned out that these are not isolated cases as JayTHL e Malware Equipe Hunter security researchers found a malicious program on Azure, which was immediately reported by Microsoft.
“It is clear that at the moment, Azure does not detect malicious programs hosted on Microsoft servers,” – explains David Pickett.
Researchers downloaded “Searchfile.exe”, one of the found samples, Em VirusTotal. It turned out that Windows Defender does not detect this malware.
Fonte: https://blog.appriver.com
