2014, Cybercrime and DDOS - Cyber Security Informer

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

The Dutch police took down 15 DDoS-for-hire services in a week

Security Affairs

APRIL 13, 2020

Dutch authorities have taken down 15 DDoS-for-hire services in a week, this is another success of law enforcement in the fight against cybercrime. An operation conducted by Dutch authorities last week has shut down 15 DDoS-for-hire services (aka DDoS booters or DDoS stressor), states a press release published by Dutch police.

DDOS

DDOS Cybercrime Advertising Government

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Security Affairs

JUNE 17, 2020

Tbps DDoS attack, the largest ever, which surpassed the previous record of 1.7 Amazon announced it has mitigated the largest ever DDoS attack of 2.3 ” The report didn’t name the target of the DDoS attack, AWS experts only revealed that the magnitude was obtained with CLDAP reflection attack. Pierluigi Paganini.

DDOS

DDOS Advertising Internet Internet

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Image: SentinelOne.com.

DDOS

DDOS Internet Internet Government

The operator of DDoS-for-hire service pleads guilty

Security Affairs

MARCH 3, 2019

Usatyuk developed and operated other DDoS-for-hire services with a co-conspirator between August 2015 and November 2017. The list of illegal DDoS-for-hire services operated by the man includes ExoStress.in (“ ExoStresser ”), QuezStresser.com, Betabooter.com (“ Betabooter ”), Databooter.com, Instabooter.com, Polystress.com, and Zstress.net.

DDOS

DDOS Advertising Cybercrime Cyber Attacks

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

Finnish prosecutors quickly zeroed in on a suspect: Julius “Zeekill” Kivimäki , a notorious criminal hacker convicted of committing tens of thousands of cybercrimes before he became an adult. After being charged with the attack in October 2022, Kivimäki fled the country. Kivimäki was 15 years old at the time.

DDOS

DDOS Cybercrime Hacking Passwords

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Security Affairs

OCTOBER 3, 2019

Dutch police seized a bulletproof hosting service in a major takedown, the infrastructure was used by tens of IoT botnets involved in DDoS attacks. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. ” continues the statement. Pierluigi Paganini.

DDOS

DDOS IoT Cybercrime Advertising

Law enforcement take down 15 DDoS-for-Hire services

Security Affairs

DECEMBER 22, 2018

The Department of Justice (DoJ) announced that the FBI seized 15 domains associated with DDoS-for-hire services. The FBI has seized 15 domains associated with DDoS-for-hire services (aka booters or stressers ) that were used by their customers to launch powerful DDoS attacks. Authorities Take Down 15 DDoS-for-Hire Websites.

DDOS

DDOS Advertising Internet Internet

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

Security Affairs

NOVEMBER 11, 2019

Researchers from Radware reported that massive TCP SYN-ACK DDoS reflection attacks hit Amazon, SoftLayer and telecom infrastructure in the last month. Researchers from Radware are warning of a wave of TCP SYN-ACK DDoS reflection attacks that in the last 30 days hit Amazon, SoftLayer and telecom infrastructure. Pierluigi Paganini.

DDOS

DDOS Advertising Telecommunications Cybercrime

Duke-Cohan sentenced to three years in prison due to false bomb threats and DDoS

Security Affairs

DECEMBER 10, 2018

The British teenager George Duke-Cohan (19) has been sentenced to three years in prison due to false bomb threats and carrying out DDoS attacks. The team was offering a DDoS-for-hire service that has many similarities with the booter implemented by the popular Lizard Squad hacking crew. Security Affairs – cybercrime, DDoS).

DDOS

DDOS Advertising Cybercrime Hacking

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

Security Affairs

OCTOBER 27, 2018

Security researchers at FortiGuard Labs have discovered a new DDoS-for-hire service called “ 0x-booter” built with leaked code that implements an easy to use interface. “ The DDoS-for-hire service allows users to power different attacks, primarily at the Transport and Application layers. ” .

DDOS

DDOS IoT Advertising Hacking

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

Anonymous Belgium hacker identified after dropping USB drive while throwing Molotov cocktail

Security Affairs

JUNE 25, 2019

The Anonymous member is a 35-year-old man from Roeselare, Belgium, was arrested after throwing a Molotov cocktail at the Crelan Bank office in Rumbeke, back in 2014. the police raided his house and investigated into his computer and electronic devices revealing a long cybercrime activity.

DDOS

DDOS Computers and Electronics Banking Cybercrime

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack. Chaput said whoever was behind the DDoS was definitely not using point-and-click DDoS tools, like a booter or stresser service. A DIRECT QUOT The domain quot[.]pw billion last year.

Scams

Scams DDOS Cryptocurrency Accountability

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. Upon installing the threat, the bot drops a file in /tmp/.pwned

Malware

Malware DDOS IoT Cybercrime

The author of the Mirai botnet gets six months of house arrest

Security Affairs

OCTOBER 30, 2018

million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University. In September, Jha and two accomplices admitted to be the authors of the infamous botnet and avoided the jail after helping feds in another cybercrime investigations.

DDOS

DDOS IoT Advertising Malware

Creator of multiple IoT botnets, including Satori, pleaded guilty

Security Affairs

SEPTEMBER 4, 2019

Kenneth Currin Schuchman (21) from Vancouver, Washington pleaded guilty to creating and operating multiple DDoS IoT botnet , including Satori. Kenneth Currin Schuchman (21) from Vancouver, Washington, aka Nexus Zeta, pleaded guilty to creating and operating multiple DDoS IoT botnets. SecurityAffairs – Satori, cybercrime).

IoT

IoT DDOS Internet Internet

Game Over? Law Enforcement Plays Hardball in Operation Endgame

Centraleyes

MAY 30, 2024

The mastermind behind this operation, YunHe Wang, a Chinese national, was arrested for orchestrating the illegal platform from 2014 to July 2022. Botnets, once primarily utilized for spamming and launching DDoS attacks, have evolved into sophisticated malware distribution platforms catering to the burgeoning ransomware industry.

Cyber threats

Cyber threats Malware Ransomware DDOS

Mirai authors avoid the jail by helping US authorities in other investigations

Security Affairs

SEPTEMBER 19, 2018

Three men who admitted to being the authors of the Mirai botnet avoided the jail after helping the FBI in other cybercrime investigations. Now three individuals who admitted to being the authors of the infamous botnet avoided the jail after helping feds in another cybercrime investigations. ” continues the press release.

Cybercrime

Cybercrime DDOS Cryptocurrency Advertising

Hackers targeted the US Census Bureau network, DHS report warns

Security Affairs

OCTOBER 11, 2020

.” In the past, the US Census has been hit by attacks, such as hacks and DDoS attacks during a 2018 test of census systems attributed to Russia-linked hackers and a 2015 hack attributed to the Anonymous collective. The HTA report warns of an intensification of malicious activities conducted by both nation-states and cybercrime groups.

Government

Government Advertising Hacking Data collection

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

Security Affairs

MAY 20, 2020

The man is known in the cybercrime underground for selling billions of stolen credentials. Sanix has been active on the cybercrime underground at least since 2018, he focuses in the sale of stolen data from organizations. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Cybercrime

Cybercrime Passwords Advertising Hacking

AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server

Security Affairs

APRIL 28, 2019

Threat actors leverage the vulnerability to install denial of service (DDoS) malware and crypto-currency miners, and to remotely execute code. ” The AESDDoS bot involved in the recent attacks has the ability to launch several types of DDoS attacks, including SYN, LSYN, UDP, UDPS, and TCP flood. . Pierluigi Paganini.

DDOS

DDOS Malware Advertising Software

Security Affairs newsletter Round 199 – News of the week

Security Affairs

FEBRUARY 3, 2019

Cobalt cybercrime gang abused Google App Engine in recent attacks. Law enforcement worldwide hunting users of DDoS-for-Hire services. Imperva mitigated DDoS attack generated 500 Million Packets per Second, the largest ever. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. 20% discount.

DDOS

DDOS Data breaches Advertising Cybercrime

Security Affairs newsletter Round 251

Security Affairs

FEBRUARY 16, 2020

Massive DDoS attack brought down 25% Iranian Internet connectivity. Safer internet day – Cybercrime facts Infographic. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly newsletter arrived!

Cyber Attacks

Cyber Attacks Banking Advertising Internet

Ukrainian police dismantled a bot farm involved in multiple spam campaigns

Security Affairs

OCTOBER 3, 2019

Cybercrime is a prolific business, criminal organizations continues to make profits with illegal activities in the cyberspace, but police are ready to contrast them. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. . “Cyber ??

Cybercrime

Cybercrime VPN Advertising Accountability

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

Raccoon Malware, a success case in the cybercrime ecosystem. Silence Hacking Crew threatens Australian banks of DDoS attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Lampion malware v2 February 2020.

Banking

Banking Advertising Malware Ransomware

British hacker sentenced to jail for attack on Liberian Telecoms firms

Security Affairs

JANUARY 11, 2019

An employee of the rival firm Cellcom paid Kaye to carry out a DDoS attack on the Liberian phone and internet provider Lonestar. Daniel Kaye admitted that the DDoS attack aimed at the African telco company inadvertently isolated Liberia from the Internet. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Telecommunications Advertising Internet

Security Affairs newsletter Round 240

Security Affairs

NOVEMBER 17, 2019

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure. TA505 Cybercrime targets system integrator companies. DDoS-for-Hire Services operator sentenced to 13 months in prison. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Spyware Advertising Ransomware

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

For instance, in late 2013 and January 2014, we observed higher-than-normal activity in Ukraine by the Turla APT group, as well as a spike in the number of BlackEnergy APT sightings. Taking sides: professional ransomware groups, hacktivists, and DDoS attacks. As soon as the attack stops, the target website becomes available again.

DDOS

DDOS Ransomware Government Energy and Utilities

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

Krebs on Security

NOVEMBER 15, 2022

Wanted Ukrainian cybercrime suspect Vyacheslav “Tank” Penchukov (right) was arrested in Geneva, Switzerland. Penchukov was named in a 2014 indictment by the U.S. Ultimately, Penchukov’s political connections helped him evade prosecution by Ukrainian cybercrime investigators for many years.

Banking

Banking Small Business Accountability Cybercrime

A new Adwind variant involved in attacks on US petroleum industry

Security Affairs

OCTOBER 1, 2019

The Adwind RAT was first discovered early 2012, the experts dubbed it Frutas RAT and later it was identified with other names, Unrecom RAT (February 2014), AlienSpy (October 2014), and recently JSocket RAT (June 2015). DDoS attacks, brute-forcing attacks). The malware uses delivers RAT payloads via nested JAR archives. .”

Malware

Malware Advertising DDOS Cybercrime

Security Affairs newsletter Round 186 – News of the week

Security Affairs

OCTOBER 28, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS IoT Advertising Media

Mirai V3G4 botnet exploits 13 flaws to target IoT devices

Security Affairs

FEBRUARY 16, 2023

Below is the list of vulnerabilities exploited by V3G4: CVE-2012-4869 : FreePBX Elastix Remote Command Execution Vulnerability Gitorious Remote Command Execution Vulnerability CVE-2014-9727 : FRITZ!Box ” concludes the report. “Therefore, it is highly recommended that patches and updates are applied when possible.”

IoT

IoT DDOS Encryption Malware

Exclusive – MalwareMustDie Team analyzed the Cayosin Botnet and its criminal ecosystem

Security Affairs

FEBRUARY 9, 2019

One of them is the Layer 7 (HTTP) Attack reported in the picture below documenting how this kind of malware can evade the anti-DDoS solutions like Cloudfare. They seem interested in building tools to DDoS and boast about taking down services with OVH, Choopa, NFO – and if the hype is real, maybe even Rocket League servers.”.

DDOS

DDOS IoT Advertising Penetration Testing

Experts spotted a new Mirai variant that targets new processors

Security Affairs

APRIL 10, 2019

The new samples also use a new “TCP SYN” DDoS attack option called “attack_method_ovh.” The improvements observed by the experts will expand the number of potential targets giving the attackers more DDoS firepower and posing a severe risk to the Internet infrastructure. ” continues the analysis. Pierluigi Paganini.

Architecture

Architecture DDOS IoT Internet

Underestimating the FONIX – Ransomware as a Service could be an error

Security Affairs

OCTOBER 11, 2020

The actors behind FONIX RaaS advertised several products on various cybercrime forums. Currently, FONIX does not appear to be threatening victims with additional consequences (such as public data exposure or DDoS attacks) for non-compliance.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Encryption Advertising DDOS

Security Affairs newsletter Round 283

Security Affairs

SEPTEMBER 27, 2020

IoT

IoT Banking Advertising Ransomware

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Security Affairs

AUGUST 27, 2020

In the context of UltraRank, the report exemplifies the JS-sniffers’ transformation from a minor online threat into a complex one supported by organized cybercrime. Cybercrime prodigy. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Banking

Banking Cybercrime Marketing Advertising

Security Affairs newsletter Round 248

Security Affairs

JANUARY 26, 2020

For the second time in a few days, Greek Government websites hit by DDoS attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Cisco Webex flaw allows unauthenticated remote attackers to join private meetings.

Data breaches

Data breaches Advertising Antivirus DDOS

ElectrumDoSMiner botnet reached 152,000 hosts

Security Affairs

APRIL 29, 2019

Researchers at Malwarebytes are monitoring the evolution of the ElectrumDoSMiner DDoS botnet that reached 152,000 infected hosts. MalwareBytes researchers are closely monitoring attacks against users of the popular Electrum Bitcoin wallet, in particular, the evolution of the Electrum DDoS botnet. Pierluigi Paganini.

DDOS

DDOS Advertising Cyber Attacks Malware

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

The Last Watchdog

OCTOBER 5, 2023

He previously chronicled the emergence of cybercrime while covering Microsoft for USA TODAY. I held this position from 2000 through 2014, during which time Windows emerged as a prime target for both precocious script kiddies and emerging criminal hacking rings. Erin: What role should governments play in combating cybercrime?

Cyber threats

Cyber threats Cyber Insurance Cybersecurity Threat Detection

Hackers, nation-states target US black community to commit fraud, sow division

SC Magazine

MARCH 3, 2021

DDoS attacks are an issue. The official BlackLivesMatter (BLM) website has been repeatedly targeted by distributed denial-of-service (DDoS) attacks following its registration in late 2014. Cyberattacks increase after major racial incidents.

DDOS

DDOS Cybersecurity Education Cyber threats

Enemybot, a new DDoS botnet appears in the threat landscape

The Dutch police took down 15 DDoS-for-hire services in a week

Trending Sources

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Stark Industries Solutions: An Iron Hammer in the Cloud

The operator of DDoS-for-hire service pleads guilty

Developer of DDoS Mirai based botnets sentenced to prison

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Law enforcement take down 15 DDoS-for-Hire services

Finland’s Most-Wanted Hacker Nabbed in France

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

Duke-Cohan sentenced to three years in prison due to false bomb threats and DDoS

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Anonymous Belgium hacker identified after dropping USB drive while throwing Molotov cocktail

Interview With a Crypto Scam Investment Spammer

EnemyBot malware adds new exploits to target CMS servers and Android devices

The author of the Mirai botnet gets six months of house arrest

Creator of multiple IoT botnets, including Satori, pleaded guilty

Game Over? Law Enforcement Plays Hardball in Operation Endgame

Mirai authors avoid the jail by helping US authorities in other investigations

Hackers targeted the US Census Bureau network, DHS report warns

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server

Security Affairs newsletter Round 199 – News of the week

Security Affairs newsletter Round 251

Ukrainian police dismantled a bot farm involved in multiple spam campaigns

Security Affairs newsletter Round 253

British hacker sentenced to jail for attack on Liberian Telecoms firms

Security Affairs newsletter Round 240

Reassessing cyberwarfare. Lessons learned in 2022

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

A new Adwind variant involved in attacks on US petroleum industry

Security Affairs newsletter Round 186 – News of the week

Mirai V3G4 botnet exploits 13 flaws to target IoT devices

Exclusive – MalwareMustDie Team analyzed the Cayosin Botnet and its criminal ecosystem

Experts spotted a new Mirai variant that targets new processors

Underestimating the FONIX – Ransomware as a Service could be an error

Security Affairs newsletter Round 283

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Security Affairs newsletter Round 248

ElectrumDoSMiner botnet reached 152,000 hosts

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

Hackers, nation-states target US black community to commit fraud, sow division

Stay Connected