cognitive cybersecurity intelligence

News and Analysis

STOCKSTAY Malware Uses WebSocket C2, RSA Encryption, and Environmental Keying for Stealth

Analysis of a .NET backdoor tracked as STOCKSTAY exposes a mature, modular espionage implant actively developed and deployed by the Russia-linked Turla cluster since at least December 2022. STOCKSTAY demonstrates several operational techniques designed to maximize stealth and survivability: secure WebSocket-based C2, asymmetric encryption using a 4096-bit RSA keypair, inter-component IPC, and environment-based keying of […]
The post STOCKSTAY Malware Uses WebSocket C2, RSA Encryption, and Environmental Keying for Stealth appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Source: gbhackers.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

News and Analysis

STOCKSTAY Malware Uses WebSocket C2, RSA Encryption, and Environmental Keying for Stealth

Subscribe to newsletter

More Posts

Splunk Secure Gateway RCE Vulnerability Lets Low-Privileged Attackers Execute Arbitrary Code

Webinar: Why business email compromise attacks keep succeeding – BleepingComputer

Tecan Integrates Agentic AI Into Its Introspect Lab Analytics Platform

CISA Warns Attackers Are Targeting Critical Internal Business Platforms

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company