USA Computer Services Blog

USA Computer Services has been serving small and medium sized businesses since 2012, providing IT Support such as technical helpdesk support, computer support and consulting.

FoggyWeb is the Latest Malware to Wreak Havoc

USA Computer Services Blog Security

Torrey Browne

Monday, October 18, 2021

0 Comments

The attack on SolarWinds earlier this year caused a lot of challenges, and now that time has passed and the dust has settled somewhat, Microsoft has uncovered another type of malware associated with the attack. This one is called FoggyWeb. What does this threat do and what can we learn about it?

In April, researchers found that the SolarWinds attack was performed by the Russian Foreign Intelligence Service. Various modules were used by the attack group, a collective known as Nobelium. Nobelium includes various malware like GoldMax, GoldFinder, and Sibot. These are in addition to other malware previously discovered, including Sunburst/Solorigate, Teardrop, and Sunspot. The latest addition to this—FoggyWeb—is a malware that installs a backdoor on systems that have already been compromised.

Backdoors give hackers the ability to influence all kinds of aspects within your organization. They can use backdoors to access your network at any point in the future, provided the backdoor is not discovered; this backdoor can be used to install malware, access sensitive data, spy on a network, and so on. These are incredibly dangerous, especially over extended periods of time. Imagine how much damage they can do over the course of a year or longer.

FoggyWeb itself is used to steal credentials and configurations from compromised systems. These credentials give hackers the ability to access infrastructures long after the malware has been purged from the system, as they can simply use the credentials to control access and perform other tasks without being uncovered. FoggyWeb can also receive commands remotely, making it capable of pulling off even more dangerous antics.

The best way to protect your business is to keep a lookout for suspicious activity on your network, prioritize access controls, and deploy powerful enterprise-grade security solutions that are designed to mitigate the majority of threats on your network. If this sounds complicated, don’t worry—with us on your side, it’s anything but!

USA Computer Services can provide your organization with the tools and services needed to make security a top priority. We can implement, maintain, and monitor your solutions to guarantee that your systems are as best protected as can be. To learn more, reach out to us at (704) 665-1619.

Facebook Twitter LinkedIn

Tags:

Microsoft Malware Hackers

About the author

Torrey Browne

Torrey M. Browne is the Founder and CEO of USA Computer Services who set out on a mission to create customized solutions for small to medium sized business that not only saved them money, but increased productivity and profitability through the better use of technology they have already purchased but are not using to its full potential.

He quickly found that many "IT Service Providers" just simply did not have their clients' best interest in mind but instead were trying to line their pockets with money instead. At USA Computer Services, our clients always come first, in fact, it's backed up by a 100% satisfaction guarantee*.

*THERE IS NO SMALL PRINT IN THIS GUARANTEE!!!!!

If you're not happy with the quality or level of IT support you are currently receiving, give us a call at 704-665-1619, email me directly or fill out any form on our website for more information. We have tons of free educational information on our website for you to download, and you'll never be hassled by a pushy salesman, that I'll guarantee you as well.

Torrey M. Browne

President & CEO

USA Computer Services, LLC

Author's recent posts