botnet – Page 8

Malware

Sep 18, 2018

New Xbash Malware Attack on Linux & Windows with Botnet, Ransomware & Coinminer Capabilities

Newly discovered Xbash malware with multiple capabilities such as Botnet, Ransomware & Coinminer to compromise windows and Linux machine which is controlled under the Iron-based threat actor group. Xbash malware has strong intrusion capabilities especially using ransomware and coin mining along with the self-replicative function to propagate across the infected network to compromise the vulnerable system. It also targets […]

root

Data Security

Sep 15, 2018

Apache Struts & SonicWall’s GMS exploits key targets of Mirai & Gafgyt IoT malware

Security researchers at Palo Alto Networks’ Unit 42 have discovered modified versions of the notorious Mirai and Gafgyt Internet of Things (IoT) malware. The malware have the capability of targeting flaws that affect Apache Struts and SonicWall Global Management System (GMS). Moreover, the Unit 42 researchers also discovered new versions of Mirai and Gafgyt (aka BASHLITE) […]

root

Cyber Crime

Sep 13, 2018

Russian Cybercriminal Pleads Guilty to Operating Kelihos Botnet

A Russian national namely Peter Yuryeich Levashov has pleaded guilty to operating the Kelihos botnet, which was used to launch a huge spamming and credential stealing campaign across the globe. Levashov, a 38-year old resident of St. Petersburg, Russia, was presented before a Connecticut US District Court and admitted to being involved in a large […]

root

Malware

Jul 01, 2018

Cryptocurrency-Mining Botnet Attack SSH Service Running IoT Devices

Newly discovered cryptocurrency mining bot targeting the Internet of Things (IoT) devices which contain SSH service and IoT-related ports, including 22, 2222, and 502. Cryptocurrency-mining malware consumes the system resources and utilizes them for mining cryptocurrencies without user permissions. This crypto-mining attack will work for all the connected devices and servers that running under SSH […]

root

Malware

Jun 26, 2018

Necurs Botnet Malware Attack Create a FlawedAMMYY Backdoor on Compromised Windows PC

Necurs botnet malware emerging again with new set of futures to create a backdoor on victims machine to steal sensitive data and perform various malicious activities. Necurs botnet actively attacking since 2017 in various form and cause some of extremely in various countries. Necurs botnet is one of the largest Malspam threat that distributes by […]

root

Data Security

Jun 25, 2018

Meet MyloBot malware turning Windows devices into Botnet

The IT security researchers at deep learning cybersecurity firm Deep Instinct have discovered a sophisticated malware in the wild targeting Microsoft’s Windows-based computers. Adding devices to Botnet The malware works in such a way that upon infecting, it allows hackers to take over the device and make it part of a botnet to carry out different […]

root

Data Security

May 26, 2018

FBI: Protect yourself from VPNFilter malware; reboot your router now

VPNFilter malware was part of a nasty botnet that infected over half a million devices in over 54 countries. Last Wednesday, The US Justice Department revealed how the FBI seized a domain that was hosting a botnet of 500,000 compromised home and office (SOHO) routers and network-access storage (NAS) devices in over 54 countries – These devices were developed by Linksys, TP-Link, MikroTik, and NETGEAR. […]

root

Data Security

May 24, 2018

FBI seizes VPNFilter botnet domain that infected 500,000 routers

It is believed that the botnet was run by infamous Russian hacking group Fancy Bear. The Federal Bureau of Investigation (FBI) has seized a domain believed to be hosting a botnet of 500,000 compromised routers and other IoT devices – The domain is believed to be operated by Russian hackers from Fancy Bear or Sofacy hacking […]

root

Hacked

May 24, 2018

500,000 Routers In 54 Countries Hacked To Create Massive Botnet Army

The Cisco security research team has unearthed a hacking attack that targets more than 500,000 consumer Wi-Fi routers. These infected routers can be used to create a massive botnet army and launch a heavyweight cyberattack. As per the findings, this attack seems to be a work of some state-sponsored actor. The malware used to infect […]

root

Data Security

Feb 27, 2018

Mirai Variant ‘OMG’ Turns IoT Devices into Proxy Servers for Cryptomining

Mirai IoT bot malware is one such piece of malicious coding that created quite a stir within the tech world by converting normal IoT devices into DDoS attack vectors. Originally created by an ex-Rutgers University student, Mirai malware has been resurfacing time and again since its initial launching in September 2016 and every time we […]

root

Hacked

Jan 06, 2018

PyCryptoMiner Attacks Linux Machines And Turns Them Into Monero-mining Bots

A new botnet (here’s our existing cryptomining coverage) is in the town and it uses Python as a scripting language to carry out its operation and mine Monero digital coins. As found out by the researchers at F5 Labs, this botnet has been operating under the radar in recent times. Due to its association with […]

root

Cyber Crime

Jan 02, 2018

Code for Satori malware posted on Pastebin

The code behind Satori malware which is a variant of infamous Mirai DDoS malware has been published online. According to NewSky Security’s principal researcher, Ankit Anubhav the code was posted on Pastebin over Christmas. Satori Initially, the code pushed Satori which means “awakening” in the Japanese and Brickerbot malware to hijack thousands of (Internet of Things) IoT devices […]

root

Cyber Crime

Dec 13, 2017

Hackers behind Mirai botnet & DYN DDoS attacks plead guilty

A group of three hackers have pleaded guilty to their role in developing, spreading and using Mirai malware botnet to conduct large-scale Distributed Denial of Service (DDoS) attacks on some of the Internet’s most popular websites and Dyn DNS, a prominent Domain Name Servers (DNS) service provider. Pleading guilty In a proceeding that took place in US District Court for Alaska on November 28th, Paras […]

root

Cyber Crime

Dec 10, 2017

The Andromeda Botnet Taken Down, Alleged Mastermind Arrested

‘Andromeda’, a huge malware system, a botnet made up of millions of computers, has finally been taken offline, as per reports. It’s also reported that the cyber criminal who has been behind the Andromeda network, has been arrested as a result of a joint operation involving Belarus, Germany and the United States. Reuters reports from […]

root

Cyber Crime

Dec 05, 2017

Authorities dismantle Andromeda Botnet that infected millions of devices

In an international cyber operation, the law enforcement authorities have dismantled a massive botnet called Andromeda (also known as Wauchos and Gamarue) associated with 80 malware families and compromising millions of Windows-based computers worldwide. Andromeda was developed in September 2011, to infect computer systems of unsuspecting users, steal personal data and install additional malware on the device from 80 […]

root

Hacked

Nov 28, 2017

World’s Biggest Botnet “Necurs” Sends 12.5 Million Scarab Ransomware Emails

If you keep a close eye on the cybersecurity world, you must be knowing about Necurs botnet, which is one of the biggest botnets this world has seen. It’s known for playing a major role in spreading Locky ransomware and Dridex banking trojan. Over the course of past one year, it has expanded this list […]

root

Ransomware

Nov 24, 2017

Necurs Spam Botnet Back in Business Spreading Scarab Ransomware

Necurs bot well known for biggest single malware spam campaigns contains nearly 5 million infected bots, of which one million active each day. In the past, it is responsible for spreading various ransomware like JAFF Ransomware, banking trojan Trickbot now it is distributing Scarab Ransomware. Security researchers from F-Secure, Forcepoint, MalwareHunterTeam and myonlinesecurity spotted Necurs evolving […]

root

Vulnerabilities

Nov 18, 2017

Motherboard Hacking Livestream: How to Turn a Router Into Part of a Botnet

Join us on YouTube or Facebook to learn how hacking works. Rick Ramgattie is a Security Analyst at Independent Security Evaluators, who will help us assess the security of the D-Link DIR-865L router to show how we can chain vulnerabilities in both its web and storage interfaces to get root shell access. This would give an attacker […]

root

Exploitation Tools

Nov 03, 2017

Telnet IoT Honeypot – Python Telnet Honeypot For Catching Botnet Binaries

This project implements a python telnet server trying to act as a honeypot for IoT Malware which spreads over horribly insecure default passwords on telnet servers on the internet. Other than https://github.com/stamparm/hontel or https://github.com/micheloosterhof/cowrie (examples), which provides full (via chroot) or simulated behaviour of a linux system this honeypots goal is just to collect statistics […]

root

Hacked

Nov 03, 2017

Malware Programmer Pays College Fee By Creating Massive Spam Botnet, Gets No Prison Time

The American federal court has sentenced a resident of Santa Clara, California, to 24 months probation for playing a major role in the creation and spreading of a computer malware. However, he wasn’t awarded any prison time. As per the US Department of Justice website, Sean Tiernan, 29, was presented before the court and United […]

root

Incidents

Oct 30, 2017

IoTroop Botnet: The Full Investigation

our researchers discovered a new and massive IoT Botnet, ‘IoTroop’. Due to the urgency of this discovery, we quickly published our initial findings in order to alert the cyber security community. Since then, we have had time to digest and dissect the propagating malware and share our findings with you. The main findings are: • The entire […]

root