‘Frebniis’ Malware Hijacks Microsoft IIS Function to Deploy Backdoor

AuroraZero · February 2023

This is interesting to me anyways.

it seems the malware injects code into a DLL that an IIS feature called Failed Request Event Buffering (FREB) uses when troubleshooting failed requests.

Encoders · February 2023

https://www.securityweek.com/frebniis-malware-hijacks-microsoft-iis-function-to-deploy-backdoor/

buzz off with your ip grabber mate :^)

jk, putting that aside, it's been a decade since i used IIS
also, if you're still using http for nothing but text transfer, you're asking for it

jmgcaguicla · February 2023

@Encoders said:
also, if you're still using http for nothing but text transfer, you're asking for it

What else should people use then?

_MS_ · February 2023

Waiting for the day when Sydney catches a virus.

Encoders · February 2023

@jmgcaguicla said:

@Encoders said:
also, if you're still using http for nothing but text transfer, you're asking for it

What else should people use then?

http(s), or other alternative you can find on wiki

jmgcaguicla · February 2023

@Encoders said:
http(s), or other alternative you can find on wiki

HTTPS doesn't prevent this tho', it hoses the request pipeline which comes after TLS.

‘Frebniis’ Malware Hijacks Microsoft IIS Function to Deploy Backdoor

Comments

buzz off with your ip grabber mate :^)

This Site is currently in maintenance mode.
Please check back here later.

‘Frebniis’ Malware Hijacks Microsoft IIS Function to Deploy Backdoor

Comments

buzz off with your ip grabber mate :^)

This Site is currently in maintenance mode.Please check back here later.

This Site is currently in maintenance mode.
Please check back here later.