botnet Archives - Page 12 of 42

Pierluigi Paganini December 01, 2020

DarkIRC botnet is targeting the critical Oracle WebLogic CVE-2020-14882

The critical remote code execution (RCE) vulnerability CVE-2020-14882 in Oracle WebLogic is actively exploited by operators behind the DarkIRC botnet. Experts reported that the DarkIRC botnet is actively targeting thousands of exposed Oracle WebLogic servers in the attempt of exploiting the CVE-2020-14882. The CVE-2020-14882 can be exploited by unauthenticated attackers to take over the system […]

Pierluigi Paganini November 24, 2020

A new Stantinko Bot masqueraded as httpd targeting Linux servers

Researchers spotted a new variant of an adware and coin-miner botnet operated by Stantinko threat actors that now targets Linux servers. Researchers from Intezer have spotted a new variant of an adware and coin-miner botnet that is operated by Stantinko threat actors since 2012. The Stantinko botnet was first spotted by ESET in 2017, at the […]

Pierluigi Paganini November 21, 2020

Experts warn of mass-scanning for ENV files left unsecured online

Threat actors are scanning the Internet for ENV files that usually contain API tokens, passwords, and database logins. Threat actors are scanning the internet for API tokens, passwords, and database logins that are usually used to store ENV files (Environment files) accidentally left exposed online. Environment files are configuration files that usually contain user environment […]

Pierluigi Paganini November 03, 2020

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Russian cybercriminal Aleksandr Brovko has been sentenced to eight years in jail for his role in a botnet scheme that caused at least $100 million in financial damage. The Russian cybercriminal Aleksandr Brovko (36) has been sentenced to eight years in jail for his role in a sophisticated botnet scheme that caused at least $100 […]

Pierluigi Paganini October 26, 2020

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Security experts spotted a new botnet, tracked as KashmirBlack botnet, that likely infected hundreds of thousands of websites since November 2019. Security experts from Imperva have spotted a new sophisticated botnet, tracked as KashmirBlack is believed to have already infected hundreds of thousands of websites by exploiting vulnerabilities in their content management system (CMS) platforms. […]

Pierluigi Paganini October 19, 2020

New Emotet campaign uses a new ‘Windows Update’ attachment

After a short pause, a new Emotet malware campaign was spotted by the experts on October 14th, crooks began using a new ‘Windows Update’ attachment. After a short interruption, a new Emotet malware campaign was spotted by the experts in October. Threat actors began using new Windows Update attachments in a spam campaign aimed at […]

Pierluigi Paganini October 12, 2020

Microsoft partnered with other security firms to takedown TrickBot botnet

A joint operation conducted by FS-ISAC, ESET, Lumen’s Black Lotus Labs, NTT, Symantec, and Microsoft aimed at takedown the TrickBot botnet. Microsoft’s Defender team, FS-ISAC, ESET, Lumen’s Black Lotus Labs, NTT, and Broadcom’s cyber-security division Symantec joint the forces and announced today a coordinated effort to take down the command and control infrastructure of the infamous TrickBot botnet. The experts that […]

Pierluigi Paganini October 05, 2020

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security researchers provided technical details about an IoT botnet dubbed Ttint that has been exploiting two zero-days in Tenda routers Security researchers at Netlab, the network security division Qihoo 360, have published a report that details an IoT botnet dubbed Ttint. The experts are monitoring the Mirai-based botnet since November 2019 and observed it exploiting […]

Pierluigi Paganini September 16, 2020

New MrbMiner malware infected thousands of MSSQL DBs

A threat actor is launching brute-force attacks on MSSQL servers in the attempt to access them to install a new crypto-mining malware dubbed MrbMiner. A group of hackers is launching brute-force attacks on MSSQL servers with the intent to compromise them and install crypto-mining malware dubbed MrbMiner. According to security firm Tencent, the team of […]

Pierluigi Paganini August 31, 2020

Google removed malicious Terracotta apps from the Play Store

Researchers from White Ops discovers several Android apps in the official Play store which installed on users’ mobile devices the Terracotta ad fraud malware. Researchers from security firm White Ops discovered several Android apps in the official Play Store that installed a hidden browser to load pages containing ad and commit ad fraud. The company […]

botnet

DarkIRC botnet is targeting the critical Oracle WebLogic CVE-2020-14882

A new Stantinko Bot masqueraded as httpd targeting Linux servers

Experts warn of mass-scanning for ENV files left unsecured online

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

KashmirBlack, a new botnet in the threat landscape that rapidly grows

New Emotet campaign uses a new ‘Windows Update’ attachment

Microsoft partnered with other security firms to takedown TrickBot botnet

New Ttint IoT botnet exploits two zero-days in Tenda routers

New MrbMiner malware infected thousands of MSSQL DBs

Google removed malicious Terracotta apps from the Play Store

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

U.S. CISA adds Android Framework flaws to its Known Exploited Vulnerabilities catalog

MuddyWater strikes Israel with advanced MuddyViper malware

'Korea’s Amazon' Coupang discloses a data breach impacting 34M customers

Google’s latest Android security update fixes two actively exploited flaws

Law enforcement shuts down Cryptomixer in major crypto crime takedown

QUICK LINKS

botnet

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!