Dossier
tunneling service
Coverage of tunneling service in the Nexus archive.
- New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials
A new Python-based backdoor framework called DEEP#DOOR uses tunneling services to establish persistent access and steal browser and cloud credentials from compromised hosts. The attack begins with a batch script ('install_obf.bat') that disables Windows security controls and dynamically extracts sensitive data.