"New BadSpace Backdoor Deployed in Drive-By Attacks"

According to G Data CyberDefense, a backdoor dubbed "BadSpace" is being distributed using a multi-stage attack chain involving infected WordPress websites. In late May, the backdoor was identified and observed being distributed using a mechanism similar to that of "SocGholish." This article continues to discuss findings regarding the distribution of the BadSpace backdoor via drive-by attacks involving infected websites and JavaScript downloaders.

SecurityWeek reports "New BadSpace Backdoor Deployed in Drive-By Attacks"

Submitted by grigby1

Submitted by Gregory Rigby on