Hackers are capitalizing on the public fear of the coronavirus, using headlines related to the global health emergency to spread malicious files, including the notorious Emotet malware. The botnet driven emails are using the coronavirus as a theme to target populations, luring victims into clicking on bad links. The emails

The Great Cannon Distributed Denial of Service (DDoS0 tool was deployed against the LIHKG platform used by Hong Kong protesters to coordinate. The Great Cannon is a tool that hijacks traffic between IP addressed, resulting in the ability to replace unencrypted content using man-in-the-middle techniques. The Great Cannon is currently

New research by Unit 42 warns that a new version of the Gafgyt Internet of Things (IoT) botnet is targeting vulnerabilities in home routers by Huawei, Realtek and Zyxel. Scan results show that the total number of vulnerable devices is at least 32,000. Gafgyt has been active since 2014, and

According to a new Webroot report, the nastiest ransomware threat of 2019 was the Emotet – Trickbot – Ryuk attack chain that resulted in massive financial losses for targeted organizations. The Trickbot – Ryuk combination also features on the list separately, taking the second spot. Other top ransomware threats were

A new report by Check Point warns that the Phorpiex botnet (aka Trik), which has been active for close to a decade, is now being used to distribute sextortion emails claiming that the sender has obtained embarrassing information about the recipient, such as a video recorded by their webcam while

In the first half of 2019, Kaspersky registered 9 times as many attacks on its Internet of Things (IoT) honeypots as it did in the same period last year, a new report shows. Honeypots are decoy systems used for analyzing cyber threats. The vast majority of attacks involved the infamous

Recent research by ESET has uncovered some of the tactics and tools used by the Winnti hacking group that has been carrying out supply-chain attacks against gaming companies since at least 2011. The attackers usually target game developers in order to embed backdoors in video games. In March of this

A “bulletproof” hosting provider used by cybercriminals to host dozens of Internet-of-things (IoT) botnets has been taken down by Dutch police. The company, called KV Solutions BV, was popular among cybercriminals because it refused to take action against its customers, even if they were using the hosting services for criminal

In a collaborative effort, security researchers with Avast and the French police took down a massive cryptomining botnet earlier this year. The botnet consisted of 850,000 machines that were infected with Retadup, a malware strain designed to mine Monero (XMR) and in some cases to log keystrokes and take screenshots.

  Carbon Black researchers are tracking a cryptomining campaign that has already infected more that 500,000 machines with Smominru malware that enslaves them into a massive botnet. According to a new report[pdf], the infected machines are used to mine Monero (XMR) and the malware is also capable of “access mining,”