Hackers Exfiltrating Data with Video Steganography via Cloud Video Services


Userlevel 7
Badge +48
Ken Westin  Nov 24, 2014
 
 
A new technique for data exfiltration has been seen in the wild using video uploaded to cloud services as a way to move data out of compromised networks without detection. The technique utilizes steganography where encrypted data is encoded into video files and uploaded to trusted or unmonitored video sharing services.
 
http://www.tripwire.com/state-of-security/wp-content/uploads/cache/2014/11/videodata/3456378546.pngThis particular attack vector has been theoretically possible for some time. However, this is the first time that such an attack has been seen in use as a way to exfiltrate data out of an organization to avoid detection by conventional security tools, such as intrusion detection/prevention systems.
 
Full Article
 

0 replies

Be the first to reply!

Reply

    Cookie policy

    We use cookies to enhance and personalize your experience. If you accept or continue browsing you agree to our cookie policy. Learn more about our cookies.

    Accept cookies Cookie settings