OneClik: A ClickOnce-Based APT Campaign Targeting Energy, Oil & Gas Infrastructure

The Trellix Advanced Research Center has uncovered a sophisticated APT malware campaign that we’ve dubbed OneClik. It specifically targets the energy, oil, and gas sector through phishing attacks and the exploitation of Microsoft ClickOnce. The campaign exhibits characteristics aligned with Chinese-affiliated threat actors, though attribution remains cautious. Its methods reflect a broader shift toward “living off the land”…

Read More

Cyberattack detected at Polish space agency, minister says

Twenty-three industry groups across Europe have urged EU tech chief Henna Virkkunnen to adopt a draft cybersecurity certification scheme (EUCS) for cloud services that was tweaked last year in favour of Amazon (AMZN.O), opens new tab, Alphabet’s (GOOGL.O), opens new tab Google and Microsoft (MSFT.O), opens new tab. The call came amid signs that the European Commission may…

Read More