New IoT botnet launches stealthy DDoS attacks, spreads malware
A new botnet is reportedly actively targeting IoT devices through the use of payloads compiled for a dozen CPUs. The botnet uses these payloads to launch different types of DDoS attacks and spread malware. The botnet has been named the Dark Nexus by researchers at Bitdefender after they discovered it
Coronavirus Campaigns Spread Emotet, Malware
Hackers are capitalizing on the public fear of the coronavirus, using headlines related to the global health emergency to spread malicious files, including the notorious Emotet malware. The botnet driven emails are using the coronavirus as a theme to target populations, luring victims into clicking on bad links. The emails
The Great Cannon DDoS Tool Used Against Hong Kong Protestors’ Forum
The Great Cannon Distributed Denial of Service (DDoS0 tool was deployed against the LIHKG platform used by Hong Kong protesters to coordinate. The Great Cannon is a tool that hijacks traffic between IP addressed, resulting in the ability to replace unencrypted content using man-in-the-middle techniques. The Great Cannon is currently
32,000+ WiFi Routers Potentially Exposed to New Gafgyt Variant
New research by Unit 42 warns that a new version of the Gafgyt Internet of Things (IoT) botnet is targeting vulnerabilities in home routers by Huawei, Realtek and Zyxel. Scan results show that the total number of vulnerable devices is at least 32,000. Gafgyt has been active since 2014, and
The nastiest ransomware, phishing and botnets of 2019
According to a new Webroot report, the nastiest ransomware threat of 2019 was the Emotet – Trickbot – Ryuk attack chain that resulted in massive financial losses for targeted organizations. The Trickbot – Ryuk combination also features on the list separately, taking the second spot. Other top ransomware threats were
Malware Uses Your PC to Send 30K Sextortion Emails Per Hour
A new report by Check Point warns that the Phorpiex botnet (aka Trik), which has been active for close to a decade, is now being used to distribute sextortion emails claiming that the sender has obtained embarrassing information about the recipient, such as a video recorded by their webcam while
Kaspersky honeypots find 105 million attacks on IoT devices in first half of 2019
In the first half of 2019, Kaspersky registered 9 times as many attacks on its Internet of Things (IoT) honeypots as it did in the same period last year, a new report shows. Honeypots are decoy systems used for analyzing cyber threats. The vast majority of attacks involved the infamous
Tactics of Supply-Chain Attack Group Exposed
Recent research by ESET has uncovered some of the tactics and tools used by the Winnti hacking group that has been carrying out supply-chain attacks against gaming companies since at least 2011. The attackers usually target game developers in order to embed backdoors in video games. In March of this
Dutch police take down hornets’ nest of DDoS botnets
A “bulletproof” hosting provider used by cybercriminals to host dozens of Internet-of-things (IoT) botnets has been taken down by Dutch police. The company, called KV Solutions BV, was popular among cybercriminals because it refused to take action against its customers, even if they were using the hosting services for criminal
Avast Maker Team WIth Police To Free 850,000 Computers From Cryptomining Malware
In a collaborative effort, security researchers with Avast and the French police took down a massive cryptomining botnet earlier this year. The botnet consisted of 850,000 machines that were infected with Retadup, a malware strain designed to mine Monero (XMR) and in some cases to log keystrokes and take screenshots.