Bleeping Computer

Hackers use Microsoft IIS web server logs to control malware

The Cranefly hacking group, aka UNC3524, uses a previously unseen technique of controlling malware on infected devices via Microsoft Internet Information Services (IIS) web server logs. Microsoft ...
Computing

Cranefly hackers using Microsoft IIS logs to deliver malware

The aim appears to be intelligence gathering, rather than ransomware or data theft. Symantec researchers have uncovered a new dropper (Trojan variant) that criminals are using to deploy malicious ...