{"id":4216,"date":"2021-06-21T09:09:05","date_gmt":"2021-06-21T07:09:05","guid":{"rendered":"https:\/\/xopero.com\/blog\/?p=4216"},"modified":"2024-05-15T16:12:07","modified_gmt":"2024-05-15T14:12:07","slug":"us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks","status":"publish","type":"post","link":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/","title":{"rendered":"US nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks"},"content":{"rendered":"\n

Welcome to the Xopero Security Center<\/a>! It’s a strange, strange world we live in… There is a new malware primary designed to block victims from entering torrent sites and other services with pirated content. And it doesn’t look like some sophisticated anti-piracy operation – generally, specialists have no idea what is going on. Victims should prepare themselves for some future scam or 2nd attack. This news open today’s review but what else our team prepared for you? REvil Group is getting more active again – this time the ransomware has hit US nuclear weapons contractor. There is also a new SolarMarker campaign that uses SEO poisoning to infect targets with a remote access trojan. The last news reports malicious Minecraft modpacks that hit Google Play Store. Ready for more details? Then check the text below. <\/p>\n\n\n\n\n\n\n\n

<\/div>\n\n\n\n<\/a>\n\n\n

This strange malware blocks you from visiting pirate websites<\/strong><\/h2>\n\n\n

Researchers from Sophos have admitted they\u2019re baffled by a new piece of malware primarily designed to\u2026 prevent victims from visiting software piracy sites. It’s said to be one of the strangest cases seen in a while\u2026 <\/p>\n\n\n\n

It\u2019s hidden in pirated copies of various software, including security products, and distributed on game chat service Discord and through Bittorent. Once double-clicked, it works by flashing up a bogus error message on the victim\u2019s screen while executing.<\/p>\n\n\n\n

The malware apparently blocks infected users from visiting a large number of piracy sites by modifying the HOSTS file on their systems.<\/p>\n\n\n\n

The malware also downloads and executes a second payload, an executable named \u201cProcessHacker.jpg.\u201d<\/p>\n\n\n\n

The malware developer\u2019s end game is still a mystery. Any ideas about what is going on? \u201cOn the face of it, the adversary\u2019s targets and tools suggest this could be some kind of crudely compiled anti-piracy vigilante operation. However, the attacker\u2019s vast potential target audience \u2014 from gamers to business professionals \u2014 combined with the curious mix of dated and new tools, techniques, and procedures (TTPs) and the bizarre list of websites blocked by the malware, all make the ultimate purpose of this operation a bit murky\u201d – said Andrew Brandt, Sophos researcher. <\/p>\n\n\n\n

The malware seems too good to be true so \u201cvictims\u201d should be prepared for some risks or potential disruption. We hope we don\u2019t have to remind you to avoid downloading pirated software and have all robust security solutions in place.<\/p>\n\n\n\n

Source<\/a><\/p>\n\n\n\n

<\/div>\n\n\n\n<\/a>\n\n\n

US nuclear weapons contractor hit by REvil ransomware <\/strong><\/h2>\n\n\n

US nuclear weapons contractor Sol Oriens has suffered a cyberattack allegedly at the hands of the REvil ransomware gang, which claims to be auctioning data stolen during the attack.<\/p>\n\n\n\n

Last week, the REvil ransomware operation listed companies whose data they were auctioning off to the highest bidder. One of the listed companies is Sol Oriens, where REvil claims to have stolen business data and employees’ data, including salary information and social security numbers.<\/p>\n\n\n\n

As proof that they stole data during the attack, REvil published images of a hiring overview document, payroll documents, and a wages report. <\/p>\n\n\n\n

Sols Oriens confirmed a cyberattack in May 2021 that affected their network. During the investigation, they determined that an unauthorized individual acquired certain documents from their systems.<\/p>\n\n\n\n

According to the company states they have no indication that this incident involves client classified or critical security-related information. The company is committed to notifying individuals and entities whose information is involved. <\/p>\n\n\n\n

This attack shows that ransomware gangs have no limits and compunctions. We don’t even want to imagine what would happen if secret information about nuclear technology and know-how ended up in the hands of cybercriminals.<\/p>\n\n\n\n

Source<\/a><\/p>\n\n\n\n

<\/div>\n\n\n\n<\/a>\n\n\n

SEO poisoning is used to backdoor targets with SolarMarker malware<\/strong><\/h2>\n\n\n

A newly observed series of attacks use SEO poisoning to infect targets with a remote access trojan (RAT). is capable of stealing the victims’ sensitive info and backdooring their systems. The malware delivered in this campaign is SolarMarker, a .NET RAT that runs in memory and is used by attackers to drop other payloads on infected devices.<\/p>\n\n\n\n

The interesting part – SolarMarker is designed to provide its masters with a backdoor to compromised systems and steal credentials from web browsers. The data harvested from infected systems is exfiltrated to the command-and-control server (located somewhere in Russia). It will also gain persistence by adding itself to the Startup folder and modifying shortcuts on the victims’ desktop.<\/p>\n\n\n

Malicious docs stuffed with SEO keywords<\/strong><\/h5>\n\n\n

In April, we reported the first SolarMarker attack wave<\/a>. Then eSentire researchers observed threat actors behind the malware flooding search results with over 100,000 web pages claiming to provide free office forms. In more recent attacks spotted by Microsoft, the attackers have switched to keyword-stuffed documents hosted on AWS and Strikingly, and are now targeting other sectors, including finance and education.<\/p>\n\n\n\n

Attackers use thousands of PDF documents stuffed w\/ SEO keywords and links that start a chain of redirections eventually leading to the malware. Cybercriminals padded these documents with >10 pages of keywords on a wide range of topics, from 'insurance form’ and 'acceptance of contract’ to 'how to join in SQL’ and 'math answers’. Once the victims find one of the maliciously crafted PDFs and open them, they are prompted to download another PDF or DOC document containing the information they are looking for. But instead of gaining access to the info, they are redirected through multiple websites using .site, .tk, and .ga TLDs to a cloned Google Drive web page where they are served the last payload, the SolarMaker malware.<\/p>\n\n\n\n

Source<\/a><\/p>\n\n\n\n

<\/div>\n\n\n\n<\/a>\n\n\n

Minecraft modpacks with a nasty malware package has hit Google Play Store<\/strong><\/h2>\n\n\n

Are you a Minecraft player? Then you must exercise caution and do some research before installing the game\u2019s add-ons, apps, plug-ins, and mods.<\/p>\n\n\n\n

Minecraft is a top-rated game with followers spread worldwide. No wonder then it continues to attract cybercriminals over and over again. This time, researchers have found that malicious apps being distributed in the guise of Minecraft mods and a file recovery utility available in Google Play are concealing adware.<\/p>\n\n\n

The adware nature\u2026<\/strong><\/h5>\n\n\n

Adware can make your game unusable, as well as the handheld device you are using to play the game inoperable. In addition, it will start showing unnecessary advertisements. This new version opens the browser after every few seconds and displays a full-screen ad, eventually rendering the device disabled. The app is also able to expose victims to various new threats.<\/p>\n\n\n\n

Always look at the reputation and reviews of an app before downloading it. In fact, in this case, most such apps are said to have 1-star reviews \u2013 a classic red flag for people to recognize a fraud. And if you installed any app that looks suspicious or has been charging you some extra subscriptions, it is important to cancel the subscription first through Google Play Store before uninstalling the app.<\/p>\n\n\n\n

Source<\/a><\/p>\n\n\n\n

<\/div>\n\n\n\n<\/a>\n\n\n

Do you have thirst for knowledge? There are ten more cybersecurity stories below<\/strong><\/h2>\n\n\n

1. Apple issues urgent patches for 2 zero-day flaws exploited in the wild (The Hacker News<\/a>)
2. Microsoft experts disrupted a large-scale BEC campaign (Security Affairs<\/a>)
3. Cyber analytics database exposed 5 Billion records online (Dark Reading<\/a>)
4. Google confirms sixth zero-day Chrome attack in 2021 (Security Week<\/a>)
5. Alibaba suffers billion-item data leak of usernames and mobile numbers (The Register<\/a>)
6. IKEA fined $1.2m for spying on employees (Infosecurity Magazine<\/a>)
7. Black Kingdom ransomware (Secure List<\/a>)
8. Hackers could access photos, videos without unlocking your phone (HackRead<\/a>)
9. An international joint operation resulted in the arrest of Clop ransomware members (Security Affairs<\/a>)
10. Microsoft will release future PowerShell updates via Windows Update (Bleeping Computer<\/a>)<\/p>\n","protected":false},"excerpt":{"rendered":"

Welcome to the Xopero Security Center! It’s a strange, strange world we live in… There is a new malware primary designed to block victims from entering torrent sites and other services with pirated content. And it doesn’t look like some sophisticated anti-piracy operation – generally, specialists have no idea what is going on. Victims should prepare themselves for some future scam or 2nd attack. This news open today’s review but what else our team prepared for you? REvil Group is getting more active again – this time the ransomware has hit US nuclear weapons contractor. There is also a new SolarMarker campaign […]<\/p>\n","protected":false},"author":1,"featured_media":2447,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[470],"tags":[],"class_list":["post-4216","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersec-news","post--single"],"yoast_head":"\nUS nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks - Xopero Blog<\/title>\n<meta name=\"description\" content=\"There is also a new SolarMarker campaign that uses SEO poisoning to infect targets with a remote access trojan. The last news...\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/\" \/>\n<meta property=\"og:locale\" content=\"pl_PL\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"US nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks - Xopero Blog\" \/>\n<meta property=\"og:description\" content=\"There is also a new SolarMarker campaign that uses SEO poisoning to infect targets with a remote access trojan. The last news...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/\" \/>\n<meta property=\"og:site_name\" content=\"Xopero Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/XoperoSoftware\/\" \/>\n<meta property=\"article:published_time\" content=\"2021-06-21T07:09:05+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-05-15T14:12:07+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2020\/04\/security-center-en.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1843\" \/>\n\t<meta property=\"og:image:height\" content=\"481\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"xopero_blogger\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@xoperobackup\" \/>\n<meta name=\"twitter:site\" content=\"@xoperobackup\" \/>\n<meta name=\"twitter:label1\" content=\"Napisane przez\" \/>\n\t<meta name=\"twitter:data1\" content=\"xopero_blogger\" \/>\n\t<meta name=\"twitter:label2\" content=\"Szacowany czas czytania\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minut\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/\"},\"author\":{\"name\":\"xopero_blogger\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#\\\/schema\\\/person\\\/cab3d3cda6e8a1aecfa8abea8827b17c\"},\"headline\":\"US nuclear weapons contractor hit by REvil Group \\\/ SolarMarker malware \\\/ Minecraft modpacks\",\"datePublished\":\"2021-06-21T07:09:05+00:00\",\"dateModified\":\"2024-05-15T14:12:07+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/\"},\"wordCount\":1257,\"publisher\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/xopero.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/04\\\/security-center-en.png\",\"articleSection\":[\"Cybersec news\"],\"inLanguage\":\"pl-PL\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/\",\"url\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/\",\"name\":\"US nuclear weapons contractor hit by REvil Group \\\/ SolarMarker malware \\\/ Minecraft modpacks - Xopero Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/xopero.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/04\\\/security-center-en.png\",\"datePublished\":\"2021-06-21T07:09:05+00:00\",\"dateModified\":\"2024-05-15T14:12:07+00:00\",\"description\":\"There is also a new SolarMarker campaign that uses SEO poisoning to infect targets with a remote access trojan. The last news...\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/#breadcrumb\"},\"inLanguage\":\"pl-PL\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"pl-PL\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/#primaryimage\",\"url\":\"https:\\\/\\\/xopero.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/04\\\/security-center-en.png\",\"contentUrl\":\"https:\\\/\\\/xopero.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/04\\\/security-center-en.png\",\"width\":1843,\"height\":481},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/en\\\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Strona g\u0142\u00f3wna\",\"item\":\"https:\\\/\\\/xopero.com\\\/blog\\\/pl\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"US nuclear weapons contractor hit by REvil Group \\\/ SolarMarker malware \\\/ Minecraft modpacks\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/xopero.com\\\/blog\\\/\",\"name\":\"Xopero Blog\",\"description\":\"Backup & Recovery\",\"publisher\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/xopero.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"pl-PL\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#organization\",\"name\":\"Xopero Software\",\"url\":\"https:\\\/\\\/xopero.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pl-PL\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/xopero.com\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/xopero-niebieskie.png\",\"contentUrl\":\"https:\\\/\\\/xopero.com\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/xopero-niebieskie.png\",\"width\":500,\"height\":132,\"caption\":\"Xopero Software\"},\"image\":{\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/XoperoSoftware\\\/\",\"https:\\\/\\\/x.com\\\/xoperobackup\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/opero-sp-z-o-o-\\\/?viewAsMember=true\",\"https:\\\/\\\/www.youtube.com\\\/channel\\\/UCRPWyeo1apjSgkDW3hZpB9g?reload=9\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/xopero.com\\\/blog\\\/#\\\/schema\\\/person\\\/cab3d3cda6e8a1aecfa8abea8827b17c\",\"name\":\"xopero_blogger\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pl-PL\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/49b4a2bbd1b6df951fc556f7478f5fb20bb41aeebf08473e459b28c5da9947f7?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/49b4a2bbd1b6df951fc556f7478f5fb20bb41aeebf08473e459b28c5da9947f7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/49b4a2bbd1b6df951fc556f7478f5fb20bb41aeebf08473e459b28c5da9947f7?s=96&d=mm&r=g\",\"caption\":\"xopero_blogger\"},\"sameAs\":[\"https:\\\/\\\/xopero.com\"],\"url\":\"https:\\\/\\\/xopero.com\\\/blog\\\/author\\\/xopero_blogger\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"US nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks - Xopero Blog","description":"There is also a new SolarMarker campaign that uses SEO poisoning to infect targets with a remote access trojan. The last news...","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/","og_locale":"pl_PL","og_type":"article","og_title":"US nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks - Xopero Blog","og_description":"There is also a new SolarMarker campaign that uses SEO poisoning to infect targets with a remote access trojan. The last news...","og_url":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/","og_site_name":"Xopero Blog","article_publisher":"https:\/\/www.facebook.com\/XoperoSoftware\/","article_published_time":"2021-06-21T07:09:05+00:00","article_modified_time":"2024-05-15T14:12:07+00:00","og_image":[{"width":1843,"height":481,"url":"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2020\/04\/security-center-en.png","type":"image\/png"}],"author":"xopero_blogger","twitter_card":"summary_large_image","twitter_creator":"@xoperobackup","twitter_site":"@xoperobackup","twitter_misc":{"Napisane przez":"xopero_blogger","Szacowany czas czytania":"6 minut"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/#article","isPartOf":{"@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/"},"author":{"name":"xopero_blogger","@id":"https:\/\/xopero.com\/blog\/#\/schema\/person\/cab3d3cda6e8a1aecfa8abea8827b17c"},"headline":"US nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks","datePublished":"2021-06-21T07:09:05+00:00","dateModified":"2024-05-15T14:12:07+00:00","mainEntityOfPage":{"@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/"},"wordCount":1257,"publisher":{"@id":"https:\/\/xopero.com\/blog\/#organization"},"image":{"@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/#primaryimage"},"thumbnailUrl":"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2020\/04\/security-center-en.png","articleSection":["Cybersec news"],"inLanguage":"pl-PL"},{"@type":"WebPage","@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/","url":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/","name":"US nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks - Xopero Blog","isPartOf":{"@id":"https:\/\/xopero.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/#primaryimage"},"image":{"@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/#primaryimage"},"thumbnailUrl":"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2020\/04\/security-center-en.png","datePublished":"2021-06-21T07:09:05+00:00","dateModified":"2024-05-15T14:12:07+00:00","description":"There is also a new SolarMarker campaign that uses SEO poisoning to infect targets with a remote access trojan. The last news...","breadcrumb":{"@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/#breadcrumb"},"inLanguage":"pl-PL","potentialAction":[{"@type":"ReadAction","target":["https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/"]}]},{"@type":"ImageObject","inLanguage":"pl-PL","@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/#primaryimage","url":"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2020\/04\/security-center-en.png","contentUrl":"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2020\/04\/security-center-en.png","width":1843,"height":481},{"@type":"BreadcrumbList","@id":"https:\/\/xopero.com\/blog\/en\/us-nuclear-weapons-contractor-hit-by-revil-group-solarmarker-malware-minecraft-modpacks\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Strona g\u0142\u00f3wna","item":"https:\/\/xopero.com\/blog\/pl\/"},{"@type":"ListItem","position":2,"name":"US nuclear weapons contractor hit by REvil Group \/ SolarMarker malware \/ Minecraft modpacks"}]},{"@type":"WebSite","@id":"https:\/\/xopero.com\/blog\/#website","url":"https:\/\/xopero.com\/blog\/","name":"Xopero Blog","description":"Backup & Recovery","publisher":{"@id":"https:\/\/xopero.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/xopero.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"pl-PL"},{"@type":"Organization","@id":"https:\/\/xopero.com\/blog\/#organization","name":"Xopero Software","url":"https:\/\/xopero.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"pl-PL","@id":"https:\/\/xopero.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2019\/03\/xopero-niebieskie.png","contentUrl":"https:\/\/xopero.com\/blog\/wp-content\/uploads\/2019\/03\/xopero-niebieskie.png","width":500,"height":132,"caption":"Xopero Software"},"image":{"@id":"https:\/\/xopero.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/XoperoSoftware\/","https:\/\/x.com\/xoperobackup","https:\/\/www.linkedin.com\/company\/opero-sp-z-o-o-\/?viewAsMember=true","https:\/\/www.youtube.com\/channel\/UCRPWyeo1apjSgkDW3hZpB9g?reload=9"]},{"@type":"Person","@id":"https:\/\/xopero.com\/blog\/#\/schema\/person\/cab3d3cda6e8a1aecfa8abea8827b17c","name":"xopero_blogger","image":{"@type":"ImageObject","inLanguage":"pl-PL","@id":"https:\/\/secure.gravatar.com\/avatar\/49b4a2bbd1b6df951fc556f7478f5fb20bb41aeebf08473e459b28c5da9947f7?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/49b4a2bbd1b6df951fc556f7478f5fb20bb41aeebf08473e459b28c5da9947f7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/49b4a2bbd1b6df951fc556f7478f5fb20bb41aeebf08473e459b28c5da9947f7?s=96&d=mm&r=g","caption":"xopero_blogger"},"sameAs":["https:\/\/xopero.com"],"url":"https:\/\/xopero.com\/blog\/author\/xopero_blogger\/"}]}},"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/posts\/4216","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/comments?post=4216"}],"version-history":[{"count":9,"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/posts\/4216\/revisions"}],"predecessor-version":[{"id":5867,"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/posts\/4216\/revisions\/5867"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/media\/2447"}],"wp:attachment":[{"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/media?parent=4216"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/categories?post=4216"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/xopero.com\/blog\/wp-json\/wp\/v2\/tags?post=4216"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}