Novel Chinese Browser Injector Lets Hackers Intercept Web Traffic

Category: Cybersecurity

A novel Chinese browser injector, HotPage.exe, discovered by ESET, allows hackers to intercept browser traffic by injecting malicious code. Posing as an 'Internet cafe security solution', it deploys a Microsoft-signed driver that manipulates browser processes, redirects users to ad pages, and collects system information. Microsoft removed the vulnerable driver in May 2024 after its disclosure. The threat is classified as adware but poses significant risks, including privilege escalation and system access for unauthorized users.

Keywords: HotPage, browser injector, cybersecurity threats

Source: CybersecurityNews

Update At: 7/19/2024

Related Sources

Now and next for cybersecurity managed services

The cybersecurity managed services market is projected to grow by 15% in 2024, driven by increased demand for security measures and the evolving MSP model. The report analyzes factors such as the impact of recent outages, enterprise spending patterns, and the influence of major players like Palo Alto Networks and Google. It highlights the transition to comprehensive service offerings, the risks of vendor concentration, and the role of AI in enhancing cybersecurity services.

Canalys

MSPs expected to manage cybersecurity infrastructure, finds report

A survey reveals that 65% of MSP customers expect their providers to manage cybersecurity alongside IT infrastructure. This shift reflects a growing demand for security capabilities, with 73% of MSPs noting increased interest in security during business meetings. Many MSPs are responding by increasing budgets for security and regulatory capabilities, indicating a significant change in their operational focus.

Comms Business

Trust and proactive investment crucial for MSPs amid cybersecurity regulation hurdles

MSPs at an eSentire roundtable emphasized the importance of trust with clients, proactive security investments, and the impact of cloud migration on cybersecurity. They also discussed challenges related to cyber insurance and the necessity of remediation services and ongoing education for effective cybersecurity practices.

IT Europa

MSP market turns to providing security solutions

New research indicates that managed service providers (MSPs) are increasingly expected to manage cybersecurity alongside IT infrastructure, with 65% of customers demanding this dual role. The study highlights a significant gap in in-house cybersecurity roles among customers, prompting MSPs to enhance their security services. Additionally, 33% of MSPs have increased their security budgets, and 28% have made specialist hires in cybersecurity and regulatory areas.

BetaNews

Cybersecurity in the spotlight at 14th UK Managed Services Summit

Cybersecurity will be a key focus at the 14th annual UK Managed Services Summit in London, featuring discussions on the complexities of the threat landscape, innovative technologies for defense against cybercrime, and the integration of compliance and AI in cybersecurity services. Key presentations from industry leaders will provide insights into effective strategies for Managed Service Providers.

IT Europa

FBI Warns Texas Residents About Risks of Regular Text Messages

The FBI warns Texans about the risks of sending regular text messages between Android and iPhone devices, highlighting vulnerabilities to hackers and the rise of phishing scams. It recommends using secure, encrypted messaging apps like WhatsApp to protect personal information. This warning follows a cyber espionage campaign targeting U.S. telecommunications networks, emphasizing the need for vigilance and updated security measures.

etsn.fm

FBI says iPhone, Android users should stop texting each other. Here’s why

The FBI warns iPhone and Android users against texting each other due to a recent Chinese cyberattack, 'Salt Typhoon', which compromised communications of over 100 government officials. The agency advises using encrypted messaging apps like WhatsApp for secure communication.

WSAZ-TV

The FBI wants you to stop texting without encryption. Here's why.

The FBI and CISA urge Americans to use encrypted messaging to protect communications from foreign hackers. Experts emphasize the importance of end-to-end encryption, especially when sharing sensitive information. Apps like WhatsApp and Signal are recommended for secure messaging across different platforms.

NBC10 Boston

US Treasury says it was hacked by China in 'major incident'

The US Treasury Department reported a major cybersecurity incident involving a hack attributed to China-based actors, which allowed access to employee workstations and unclassified documents. China denied the allegations, calling them baseless. The breach was linked to a third-party service provider, BeyondTrust, which has since been taken offline. The incident is part of a series of high-profile hacks attributed to Chinese state-sponsored hackers, raising concerns over cybersecurity in the US.

BBC News

Chinese hackers access U.S. Treasury Department workstations, obtain unclassified documents

Chinese hackers accessed U.S. Treasury Department workstations and unclassified documents through a compromised third-party software provider. The Treasury is investigating the incident, which is classified as a major cybersecurity breach. China has denied involvement, while U.S. officials are dealing with the repercussions of a broader cyberespionage campaign. The Treasury Department is collaborating with the FBI and cybersecurity agencies to address the breach.

CBS News