Hackers often use legitimate software for their purposes. It helps them stay invisible to antiviruses and other security systems. This was stated by Alexey Lednev, Head of Expertise at PT Expert Security Center in Positive Technologies.
Attackers quite often use legitimate tools to carry out cyberattacks, because thanks to them they can hide their activities and remain незаметными for some means of protection.
The antivirus may not notice the use of such tools or mark them as unwanted software. Usually, this does not cause an immediate reaction from cybersecurity specialists.
As an example of how software can be misused, the expert mentioned Ngrok. This software allows you to turn a regular computer into a server that can emulate the launch of a website or software with online functions.
This function is often used by developers to demonstrate pre-release versions of their products to customers or colleagues. When using Ngrok, the developer provides customers or colleagues with access to the product and, therefore, to their computer via a secure channel called a "tunnel."
According to Lednev, attackers often install Ngrok on infected computers. They use this software to control the victim's system. Since Ngrok is considered legitimate software, security systems may not recognize it as a threat and пропускать traffic between the infected computer and the hacker's device.
Ngrok is held in high esteem by hackers, as it helps to build tunnels into the infrastructure being attacked. It has been used very actively in recent years. According to the analytics of the Positive Technologies incident investigation team, it is used in 16–25% of all attacks.
Earlier it became known that the Cabinet continues to improve laws against fraudsters. New initiatives give силовым структурам the right to block funds in citizens' accounts without a court order. This is aimed at combating cybercrime and theft. The blocking will last no more than ten days and will only affect the stolen amount.
Read also on the topic:
Criminal liability is to be introduced for droppers in Russia
Almost half of the programs that replaced iOS applications are dangerous
Fraudsters began to deceive Russians through fake delivery from PVZ
Fraudsters offer "help" to victims of fraud: how not to become a victim of a new scheme
Now on home
Start of deliveries scheduled for 2027
Over 51,000 new motorcycles were sold in Russia in 2025
The car will take at least a year to assemble
The application's audience has reached 20 million users
The model will be included in the list of cars for taxis, price - from 2.25 million rubles
All parking lots of the "Administrator of the Moscow Parking Space" are connected to the service
The cars will be supplied to the Moscow Transport Service Directorate
Deliveries to India may begin in 2028
The technology provides automated search for all types of defects in power units
The plane flew 500 km, accelerating to 425 km/h
The plant stated that the information about the termination of purchases for models 6 and 8 is not true
Scientists are using the "Ekran-M" installation