Researchers have discovered a new functional backdoor malware, which uses Telegram as its command-and-control (C2) channel. The malware functions as a backdoor performing an initial self-installation process, monitors channels for incoming commands and supports four commands for executing various actions, three of which have been fully implemented. The malware’s use of cloud applications like Telegram complicates detection efforts, posing a significant challenge for cybersecurity defenders.

Ernst & Young Data Breach Analysis: Third-Party IT Support Platform Compromise Exposes Client Tax and Financial Information – Rescana
Ernst & Young Data Breach Analysis: Third-Party IT Support Platform Compromise Exposes Client Tax and Financial Information Rescana


