HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

July 15, 2025

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

Researchers from Unit 42 at Palo Alto Networks have uncovered a novel backdoor—HazyBeacon—used by a threat cluster identified as CL-STA-1020. The campaign, which began in late 2024, has targeted gover …

Published Date:
Jul 15, 2025 (16 hours, 12 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-53833

CVE-2025-43856

CVE-2023-33733

Source: Read More

Previous ArticleImageMagick Flaw (CVE-2025-53101): Stack Buffer Overflow Allows Potential Remote Code Execution

Next Article CVE-2025-43856: OAuth2 Account Hijacking Flaw Found in Immich, a Popular Self-Hosted Photo Platform

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Notes Android App Using SQLite

How to Get Security Patches for Legacy Unsupported Node.js Versions

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Introducing AWS MCP Servers for code assistants (Part 1)

UX Debt: The roommate who never does the dishes

CVE-2025-40615 – Bookgy Reflected Cross-Site Scripting (XSS)

Postman introduces new features to enable “secure by design” API development

Build an MCP application with Mistral models on AWS

CVE-2025-5826 – Autel MaxiCharger AC Wallbox Commercial BLE Command Injection Vulnerability

Windows SMB Flaw (CVE-2025-33073): SYSTEM Privilege Escalation via Kerberos, PoC Available

CVE-2025-3263 – Hugging Face Transformers ReDoS Vulnerability

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

Related Posts