The Hacker News

NOVEMBER 13, 2022

A newly discovered evasive malware leverages the Secure Shell (SSH) cryptographic protocol to gain entry into targeted systems with the goal of mining cryptocurrency and carrying out distributed denial-of-service (DDoS) attacks.

DDOS 99

DDOS Malware Cryptocurrency Security Intelligence 99

Security Affairs

AUGUST 21, 2022

Threat actors compromise WordPress sites to display fake Cloudflare DDoS protection pages to distribute malware. DDoS Protection pages are associated with browser checks performed by WAF/CDN services which verify if the site visitor is a human or a bot. The file poses as a tool required to bypass the DDoS verification.

DDOS 98

DDOS Malware Antivirus Firewall 98

Bleeping Computer

JANUARY 4, 2023

A new Linux malware downloader created using SHC (Shell Script Compiler) has been spotted in the wild, infecting systems with Monero cryptocurrency miners and DDoS IRC bots. [.].

DDOS 85

DDOS Malware Cryptocurrency 85

eSecurity Planet

FEBRUARY 16, 2023

Cloudflare mitigated dozens of hyper-volumetric DDoS attacks last weekend, most of them ranging from 50 to 70 million requests per second (RPS) – and the largest one exceeding 71 million RPS. DDoS attacks, on the other hand, don’t require infiltration to be effective and thus are growing in frequency and intensity.

DDOS 117

DDOS Ransomware Backups Cryptocurrency 117

CyberSecurity Insiders

FEBRUARY 8, 2021

Chinese Cybersecurity firm Qihoo 360 has discovered a new malware campaign that is being infecting vulnerable android devices, turning them into devices that can be used in automated Distributed Denial of Service(DDoS) campaigns. Moobot group that developed Leethozer botnet is said to be the architect of the latest Matroyosh malware.

Malware 131

Malware Mobile DDOS Cryptocurrency 131

The Hacker News

JANUARY 10, 2022

New research into the infrastructure behind an emerging DDoS botnet named Abcbot has uncovered links with a cryptocurrency-mining botnet attack that came to light in December 2020.

DDOS 140

DDOS Cryptocurrency Malware 140

CyberSecurity Insiders

JANUARY 18, 2022

China has emerged as a top nation to host the highest number of Distributed Denial of Service (DDos) attacks in recent past and is also a leading nation to launch modern cyber warfare. Interestingly, US stood at the second position in the list of nations hosting DdoS attacks.

DDOS 108

DDOS Cryptocurrency Education Government 108

Security Affairs

MARCH 10, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army , threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” 35) on port 6666.

DDOS 102

DDOS Malware Digital transformation Advertising 102

Bleeping Computer

MAY 10, 2023

New samples of the RapperBot botnet malware have added cryptojacking capabilites to mine for cryptocurrency on compromised Intel x64 machines. [.]

Malware 96

Malware DDOS Cryptocurrency 96

Security Affairs

NOVEMBER 14, 2022

Researchers spotted a new evasive malware, tracked as KmsdBot, that infects systems via an SSH connection that uses weak credentials. Akamai Security Research discovered a new evasive Golang-based malware, tracked as KmsdBot, that infects systems via an SSH connection that uses weak login credentials. ” Pierluigi Paganini.

DDOS 98

DDOS Malware Cryptocurrency Manufacturing 98

Security Affairs

FEBRUARY 2, 2024

The Computer Emergency Response Team in Ukraine (CERT-UA) reported that a PurpleFox malware campaign had already infected at least 2,000 computers in the country. Experts defined DirtyMoe as a complex malware that has been designed as a modular system. ” reads the alert published by CERT-UA.

Malware 135

Malware Internet Internet DDOS 135

Security Affairs

DECEMBER 1, 2022

Redigo is a new Go-based malware employed in attacks against Redis servers affected by the CVE-2022-0543 vulnerability. Researchers from security firm AquaSec discovered a new Go-based malware that is used in a campaign targeting Redis servers. ” reads the analysis published by AquaSec. Pierluigi Paganini.

Malware 145

Malware DDOS Architecture Cryptocurrency 145

Security Affairs

SEPTEMBER 8, 2024

Multiple threat actors actively exploited the recently disclosed OSGeo GeoServer GeoTools flaw CVE-2024-36401 in malware-based campaigns. ” The flaw was also exploited to deliver Mirai Variant – JenX and the Condi DDoS bot. GeoServer is an open-source server that allows users to share and edit geospatial data. .

Malware 134

Malware Telecommunications Encryption DDOS 134

Threatpost

MARCH 10, 2022

Be careful when downloading a tool to cyber-target Russia: It could be an infostealer wolf dressed in sheep's clothing that grabs your cryptocurrency info instead.

DDOS 98

DDOS Cryptocurrency Malware 98

Security Affairs

JANUARY 4, 2023

Researchers discovered a new Linux malware developed with the shell script compiler ( shc ) that was used to deliver a cryptocurrency miner. The ASEC analysis team recently discovered that a Linux malware developed with shell script compiler ( shc ) that threat actors used to install a CoinMiner. ” continues the report.

Malware 98

Malware DDOS Cryptocurrency Firewall 98

Security Affairs

FEBRUARY 5, 2021

The TeamTNT hacker group has been employing a new piece of malware, dubbed Hildegard, to target Kubernetes installs. The hacking group TeamTNT has been employing a new piece of malware, dubbed Hildegard, in a series of attacks targeting Kubernetes systems. The malware deploys the XMRig mining tool to mine Monero cryptocurrency.

Malware 118

Malware DNS Cryptocurrency Internet 118

Security Affairs

OCTOBER 6, 2022

Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a recently discovered sample of a new malware called LilithBot to the Eternity group (aka EternityTeam; Eternity Project). ” reads the report published by Zscaler.

Malware 98

Malware DDOS Ransomware Cryptocurrency 98

Security Affairs

SEPTEMBER 11, 2021

SOVA is a new Android banking trojan that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. The malware allows attacker to gather sensitive data from infected devices, including banking credentials and PII. two related to first iteration of the malware, and the last one being the newer release.

Banking 112

Banking DDOS Cryptocurrency Mobile 112

Security Affairs

JANUARY 10, 2022

Experts linked the C2 infrastructure behind an the Abcbot botnet to a cryptocurrency-mining botnet attack that was uncovered in December 2020. Experts linked the infrastructure used by the Abcbot DDoS botnet to the operations of a cryptocurrency-mining botnet that was uncovered in December 2020. ” concludes the report.

Cryptocurrency 110

Cryptocurrency DDOS Malware Software 110

The Hacker News

AUGUST 5, 2022

It is marketed as a means to enable remote access, command execution, distributed denial-of-service (DDoS) attacks and cryptocurrency mining operations on infected systems," Cisco Talos said in a report shared

DDOS 99

DDOS Cryptocurrency Malware Marketing 99

Security Affairs

JULY 30, 2018

Security experts from Kaspersky Lab have spotted a new cryptocurrency miner dubbed PowerGhost that can spread leveraging a fileless infection technique. “The malware, which we dubbed PowerGhost, is capable of stealthily establishing itself in a system and spreading across large corporate networks infecting both workstations and servers.”

Cryptocurrency 69

Cryptocurrency DDOS Advertising Malware 69

Security Affairs

JUNE 22, 2021

Experts defined DirtyMoe as a complex malware that has been designed as a modular system. The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. “Both PurpleFox and DirtyMoe are still active malware and gaining strength.”

DNS 145

DNS Internet Internet Malware 145

Security Affairs

FEBRUARY 23, 2025

from Bybit, it is the largest cryptocurrency heist ever Apple removes iCloud encryption in UK following backdoor demand B1acks Stash released 1 Million credit cards U.S. Lazarus APT stole $1.5B Military & Defense Sector: A Cybersecurity Disaster in the Making Analyzing ELF/Sshdinjector.A!

Malware 65

Malware Scams Encryption Phishing 65

Security Affairs

JUNE 28, 2020

Every week the best security articles from Security Affairs free for you in your email box. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Every week the best security articles from Security Affairs free for you in your email box.

DDOS 118

DDOS Spyware Advertising Ransomware 118

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. “Installing SpyEYE, ZeuS, any DDoS and spam admin panels,” NeroWolfe wrote. Dmitry Yuryevich Khoroshev.

Ransomware 297

Ransomware Cybercrime Accountability Malware 297

Security Affairs

JUNE 17, 2024

.” The dark web marketplace Empire Market featured multiple categories of illicit goods such as illegal drugs, counterfeit items, Software & Malware, and credit card numbers, it allowed its users to pay using Bitcoin (BTC), Monero (XMR), and Litecoin (LTC).

Marketing 129

Marketing Cryptocurrency DDOS Scams 129

Security Affairs

OCTOBER 30, 2018

million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University. Securi ty Affairs – Mirai botnet, malware). Pierluigi Paganini.

DDOS 111

DDOS Advertising IoT Malware 111

SecureList

APRIL 29, 2025

Processes checks performed by the threat After the process checks and killing are done, the b / run file is executed, which is responsible for maintaining persistence on the infected machine and executing next-stage malware from its code. Tactics, techniques and procedures Below are the Outlaw TTPs identified from our malware analysis.

Passwords 72

Passwords Authentication System Administration Malware 72

Webroot

OCTOBER 14, 2022

In other words, 2022 has been an eventful year in the threat landscape, with malware continuing to take center stage. The 6 Nastiest Malware of 2022. With that, here are the 6 Nastiest Malware of 2022. The post Discover 2022’s Nastiest Malware appeared first on Webroot Blog. 2022 was no different.

Malware 78

Malware Antivirus DDOS Cyber Insurance 78

Security Affairs

DECEMBER 21, 2021

Uptycs researchers have observed attacks related to miners, DDOS malware and some variants of ransomware actively leveraging LogforShell flaw in log4j. So far we have observed attacks related to coinminers, DDOS malware and some variants of ransomware actively leveraging this vulnerability. DDoS botnet payloads.

DDOS 110

DDOS Malware Ransomware Cryptocurrency 110

Security Affairs

JUNE 15, 2019

Hence, the malware is executed within an already running container while trying to hide its own presence.” ” The AESDDoS malware is active since at least since 2014 and it was used to build large DDoS botnet. launching DDoS attacker, mining cryptocurrency, etc.). ” states the report.

DDOS 111

DDOS Malware Advertising Cryptocurrency 111

Security Affairs

FEBRUARY 19, 2023

Twitter will allow using the SMS-based two-factor authentication (2FA) only to its Blue subscribers GoDaddy discloses a new data breach Fortinet fixes critical vulnerabilities in FortiNAC and FortiWeb German airport websites hit by DDos attacks once again Cisco fixed critical RCE bug in ClamAV Open-Source Antivirus engine CISA adds Cacti, Office, Windows (..)

DDOS 98

DDOS Data breaches Ransomware Hacking 98

Security Affairs

NOVEMBER 27, 2022

Data from 5.4M Data from 5.4M

DDOS 125

DDOS Cybercrime Ransomware Cryptocurrency 125

Security Affairs

AUGUST 30, 2020

A Google Drive weakness could allow attackers to serve malware Adobe released open- source tool Stringlifier to identify randomly generated strings Canadian delivery company Canpar Express suffered a ransomware attack Cybercriminal greeners from Iran attack companies worldwide for financial gain Dark web Empire Market still down after 3 days.

DDOS 102

DDOS Scams Malware Advertising 102

Security Affairs

OCTOBER 7, 2020

Experts noticed that the malware supports multiple CPU architectures, including x86(32/64), ARM(32/64), MIPS(MIPS32/MIPS-III) and PPC, it is written in the Go open-source programming language. Upon gaining access to the device, the bot downloads one of seven binaries that install the HEH malware.

Architecture 134

Architecture IoT Malware Advertising 134

Hacker Combat

DECEMBER 15, 2021

The different forms of malware are constantly evolving. It was openly disclosed recently, that the malware Log4Shell and also LogJam are among some of the malware targeting vulnerabilities in Log4j. Many cryptocurrency miners have been susceptible to attacks and some threats were intercepted.

DDOS 52

DDOS Malware Ransomware Cryptocurrency 52

Security Affairs

MAY 15, 2022

Researchers at cybersecurity firm Cyble analyzed a Tor website named named ‘Eternity Project’ that offers for sale a broad range of malware, including stealers, miners, ransomware, and DDoS Bots. The channel was used to share information about malware listings and updates. SecurityAffairs – hacking, malware).

Ransomware 98

Ransomware DDOS Cybercrime Malware 98