{"id":1293,"date":"2025-01-13T11:02:21","date_gmt":"2025-01-13T11:02:21","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2025\/01\/13\/redcurl-apt-hackers-absuing-windows\/"},"modified":"2025-01-13T11:02:21","modified_gmt":"2025-01-13T11:02:21","slug":"redcurl-apt-hackers-absuing-windows","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2025\/01\/13\/redcurl-apt-hackers-absuing-windows\/","title":{"rendered":"RedCurl APT Deploys Malware via Windows Scheduled Tasks Exploitation"},"content":{"rendered":"<p>    RedCurl APT Deploys Malware via Windows Scheduled Tasks Exploitation<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>Researchers identified RedCurl APT group activity in Canada in late 2024, where the attackers used scheduled tasks to execute pcalua.exe to run malicious binaries&#8230;<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><\/p>\n<p> \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/gbhackers.com\/redcurl-apt-hackers-absuing-windows\/\">Go to gbhackers.com<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>RedCurl APT Deploys Malware via Windows Scheduled Tasks Exploitation Researchers identified RedCurl APT group activity in Canada in late 2024, where the attackers used scheduled tasks to execute pcalua.exe to run malicious binaries&#8230; Go to gbhackers.com<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[65],"tags":[81],"class_list":["post-1293","post","type-post","status-publish","format-standard","hentry","category-gbhackers","tag-gbhackers"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/1293"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=1293"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/1293\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=1293"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=1293"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=1293"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}