• Tue. Oct 10th, 2023

A Chinese ‘Gabbling Goblin’ is Preying on IT Support Agents

Avatar photo

ByEsme Greene

Jul 8, 2023
Chinese 'Gabbling Goblin' Targets IT Support
Esme Greene
Latest posts by Esme Greene (see all)

ESET, a Slovak cybersecurity company, detected a number of hits against Southeast Asian gaming companies. The incidents started in October 2021 and continue to rage on. Their leader is an unidentified cyber outfit linked to China.

Get to Know The Malicious Software

This harmful procedure, known as “ChattyGoblin,” employs a very particular strategy: hackers get into popular chat programs utilized by the support personnel of gaming venues. 

We are referring specifically to the Comm100 and LiveHelp100 programs.

Scripting entails injecting an infected C# dropper into the original installers of the aforementioned programs, which causes the second stage payload to be downloaded and activated.

What Is Happening During Such Attacks

Due to these attacks, hackers are able to access staff workstations and install Cobalt Strike, a program that allows them to remotely manipulate compromised computers.

Such breaches take advantage of the networks of their targets by exploiting social engineering flaws in business security systems. 

Cybersecurity Measures

Users should use dependable antivirus or EDR solutions and rapidly update any software you use for work in order to avoid falling victim to similar criminal activities. You should also educate your personnel about cybersecurity.

Avatar photo

Esme Greene

Esme brings a wealth of knowledge and experience to our website, specializing in all aspects of DarkWeb security. With a deep understanding of the intricate workings of the DarkWeb and its associated cybersecurity risks, Esme curates insightful and informative content for our readers.