Hacking, Internet and Security Intelligence

Black Hat Fireside Chat: The impactful role crowdsourced security intelligence must play

The Last Watchdog

SEPTEMBER 13, 2023

Sharing intel for a greater good Now one distinctive type of crowdsourcing — ethical hacking – is positioned to become a much more impactful component of securing modern networks. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW

Security Intelligence

Security Intelligence Marketing Risk Internet

Night Sky ransomware operators exploit Log4Shell to target hack VMware Horizon servers

Security Affairs

JANUARY 11, 2022

The ransomware gang started its operations on December 27, 2021, and has already hacked the corporate networks of two organizations from Bangladesh and Japan respectively. In early January, threat actors started targeting VMware Horizon systems exposed on the Internet. nightsky ‘ extension to encrypted file names. trendmrcio[.]com,

Ransomware

Ransomware Hacking Internet Internet

Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577

Security Affairs

MARCH 10, 2025

Cybersecurity and Infrastructure Security Agency (CISA) added the the vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. “ Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,PHP-CGI OS Command Injection Vulnerability) . In June, the U.S.

DDOS

DDOS Security Intelligence Malware Hacking

A new Mirai botnet variant targets DigiEver DS-2105 Pro DVRs

Security Affairs

DECEMBER 26, 2024

In November 2024, the Akamai Security Intelligence Research Team (SIRT) observed increased activity targeting the URI /cgi-bin/cgi_main.cgi , linked to a Mirai-based malware campaign exploiting an unassigned RCE vulnerability in DVR devices, including DigiEver DS-2105 Pro. ” reads the analysis published by Akamai.

Manufacturing

Manufacturing Malware Firmware IoT

STRRAT RAT spreads masquerading as ransomware

Security Affairs

MAY 20, 2021

Microsoft Security Intelligence researchers uncovered a malware campaign that is spreading a remote access trojan (RAT) tracked as STRRAT. pic.twitter.com/mGow2sJupN — Microsoft Security Intelligence (@MsftSecIntel) May 19, 2021. SecurityAffairs – hacking, STRRAT RAT). crimson extension. Pierluigi Paganini.

Ransomware

Ransomware Malware Encryption Security Intelligence

SHARING INTEL: Here’s why it has become so vital to prioritize the security-proofing of APIs

The Last Watchdog

NOVEMBER 30, 2021

API hacking escapades. Over the past couple of years, good-guy researchers and malicious hackers alike have steadily scaled up their hacking activities to flush them out. Over the past couple of years, good-guy researchers and malicious hackers alike have steadily scaled up their hacking activities to flush them out.

Big data

Big data Digital transformation Accountability Hacking

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Security Affairs

DECEMBER 17, 2023

On December 6, The Akamai Security Intelligence Response Team (SIRT) published the first update to the InfectedSlurs advisory series. The security firm revealed that threat actors were exploiting a vulnerability, tracked as CVE-2023-49897 (CVSS score 8.0) and earlier.

Firmware

Firmware Wireless DDOS IoT

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

Security Affairs

JULY 11, 2024

Multiple threat actors exploit a recently disclosed security PHP flaw CVE-2024-4577 to deliver multiple malware families. The malware was designed to targets Internet of Things (IoT) devices and Linux servers for cryptomining and DDoS purposes. ” reported Akamai.

Malware

Malware DDOS Internet Internet

Iran-linked APT groups continue to evolve

Security Affairs

NOVEMBER 17, 2021

Over the past year, Microsoft Threat Intelligence Center (MSTIC) has observed an evolution of the tools, techniques, and procedures employed by Iranian nation-state actors. Learn more from this blog summarizing these trends, as presented at #CyberWarCon : [link] — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2021.

VPN

VPN Accountability Social Engineering Media

Updated Kmsdx botnet targets IoT devices

Security Affairs

AUGUST 28, 2023

Researchers spotted an updated version of the KmsdBot botnet that is now targeting Internet of Things (IoT) devices. The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices.

IoT

IoT DDOS Architecture Internet

Microsoft warns of a large-scale BEC campaign to make gift card scam

Security Affairs

MAY 8, 2021

Business email compromise (BEC) attacks represent a serious threat for organizations worldwide, according to the annual report released by FBI’s Internet Crime Complaint Center , the 2020 Internet Crime Report , in 2020, the IC3 received 19,369 Business Email Compromise (BEC)/Email Account Compromise (EAC) complaints.

Scams

Scams Manufacturing Security Intelligence Internet

VMware urges customers to patch VMware Horizon servers against Log4j attacks

Security Affairs

JANUARY 26, 2022

VMware released security patches to address critical Log4j security vulnerabilities in VMware Horizon servers targeted in ongoing attacks. VMware urges customers to patch critical Log4j security vulnerabilities impacting Internet-exposed VMware Horizon servers targeted in ongoing attacks. to add a shell.

Internet

Internet Internet Ransomware Hacking

New InfectedSlurs Mirai-based botnet exploits two zero-days

Security Affairs

NOVEMBER 22, 2023

In October, Akamai’s Security Intelligence Response Team (SIRT) noticed an anomalous activity to the company’s honeypots targeting a rarely used TCP port. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, botnet)

DDOS

DDOS Wireless Security Intelligence Malware

More Than 90 Percent of Malware in Q2 Came Via Encrypted Traffic: WatchGuard

eSecurity Planet

OCTOBER 4, 2021

percent of all malware detected on networks of WatchGuard Technologies customers in the second quarter came over encrypted connections, raising the security risk for the 80 percent of such organizations that lack processes for decrypting and scanning HTTPS traffic for threats. A surprising 91.5

Encryption

Encryption Malware Ransomware Firewall

European firm DSIRF behind the attacks with Subzero surveillance malware

Security Affairs

JULY 28, 2022

Microsoft states that multiple news reports have linked the company to the Subzero malware toolset used to hack a broad range of devices, phones, computers, and network and internet-connected devices. Confirm that Microsoft Defender Antivirus is updated to security intelligence update 1.371.503.0

Surveillance

Surveillance Malware Authentication Accountability

Microsoft partnered with other security firms to takedown TrickBot botnet

Security Affairs

OCTOBER 12, 2020

The security firms have collected more than 125,000 TrickBot malware samples and mapped the command and control infrastructure. The TrickBot botnet was considered by security experts one of the biggest botnets. The information gathered by the security firm was used by Microsoft to receive a warrant to takedown the TrickBot servers.

Malware

Malware Banking Advertising Financial Services

5 Components of the Kubernetes Control Plane that Demand Special Attention in Your Security Strategy

Security Affairs

OCTOBER 30, 2020

As with kube-apiserver, organizations might accidentally leave etcd exposed to the Internet. This investigation uncovered 2,284 etcd servers that malicious actors could access through the Internet. How to secure it. For information on how to secure that part of a Kubernetes cluster, click here. Pierluigi Paganini.

Advertising

Advertising Internet Internet VPN

SHARED INTEL: FireMon survey shows security lags behind fast pace of hybrid cloud deployments

The Last Watchdog

MARCH 18, 2020

percent of this group acknowledged they are still using manual processes to manage the security of their hybrid environments. It was clear walking the exhibit floors at RSAC 2020 that some amazing advances are being made to apply leading-edge data analytics techniques to securing hybrid networks. Meanwhile, 73.5 I’ll keep watch.

Digital transformation

Digital transformation Software Technology Network Security

Microsoft warns of more disruptive BlueKeep attacks and urges patch installation

Security Affairs

NOVEMBER 8, 2019

Recently, researchers warned of the first mass-hacking campaign exploiting the BlueKeep exploit , the attack aimed at installing a cryptocurrency miner on the infected systems. Read our latest blog w/ assist from @GossiTheDog & @MalwareTechBlog [link] — Microsoft Security Intelligence (@MsftSecIntel) November 7, 2019.

Malware

Malware Penetration Testing Advertising Spyware

New Echobot Botnet targets Oracle, VMware Apps and includes 26 Exploits

Security Affairs

JUNE 16, 2019

The popular expert Larry Cashdollar, from Akamai’s Security Intelligence Response Team (SIRT), spotted a new version of the Echobot botnet that counts 26 different exploits. The Echobot botnet was first detected by experts at PaloAlto Networks early this month, the botnet is based on the dreaded Mirai botnet.

IoT

IoT Advertising Malware Wireless

Episode 157: Do we need an FDA for Software? Also: operationalizing Threat Intelligence

The Security Ledger

AUGUST 16, 2019

In our second segment, we’re joined by Allan Thomson who is the Chief Technology Officer at LookingGlass Cyber Solutions to talk about the growing use of cyber threat intelligence and the need to evolve cybersecurity practices to. On Firmware Security: Nobody’s Trying. On the Internet of Things, however, things are different.

Firmware

Firmware Software Internet Internet

The number of exploits in the Echobot botnet reached 59

Security Affairs

AUGUST 7, 2019

At the time of its discovery, operators added 8 new exploits, but a few weeks later the popular expert Larry Cashdollar from Akamai’s Security Intelligence Response Team (SIRT) discovered a variant that included a total of 26 exploits.

Wireless

Wireless IoT Advertising Surveillance

Best Identity and Access Management (IAM) Solutions for 2022

eSecurity Planet

JANUARY 27, 2022

Dashlane Password Manager provides companies with everything they need to onboard new employees, manage permissions and monitor security issues all from one place. It also includes advanced features such as SAML-based single sign-on (SSO) and the company's security architecture has never been hacked. Learn more about Dashlane.

Authentication

Authentication Artificial Intelligence Technology Marketing

Keeper vs LastPass (2024 Comparison): Which Is Right for You?

eSecurity Planet

JUNE 14, 2024

Keeper : Better for pricing and secure password management ($2 per user per month for Business Starter license; $3.75 Dark web monitoring: Tracks your email addresses and notifies you if they’re hacked on the dark web. Businesses focusing on security may find LastPass unsuitable due to its breach history and lack of secret management.

Password Management

Password Management Passwords Authentication Accountability

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

The contemporary world has witnessed the rise of the Internet and global communication, and collaboration technologies, including mobile data use and the culture of bring your own device [BYOD]. What are the benefits of cyber security awareness trainings?

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Cyber Security Informer

Black Hat Fireside Chat: The impactful role crowdsourced security intelligence must play

Night Sky ransomware operators exploit Log4Shell to target hack VMware Horizon servers

Trending Sources

Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577

A new Mirai botnet variant targets DigiEver DS-2105 Pro DVRs

STRRAT RAT spreads masquerading as ransomware

SHARING INTEL: Here’s why it has become so vital to prioritize the security-proofing of APIs

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

Iran-linked APT groups continue to evolve

Updated Kmsdx botnet targets IoT devices

Microsoft warns of a large-scale BEC campaign to make gift card scam

VMware urges customers to patch VMware Horizon servers against Log4j attacks

New InfectedSlurs Mirai-based botnet exploits two zero-days

More Than 90 Percent of Malware in Q2 Came Via Encrypted Traffic: WatchGuard

European firm DSIRF behind the attacks with Subzero surveillance malware

Microsoft partnered with other security firms to takedown TrickBot botnet

5 Components of the Kubernetes Control Plane that Demand Special Attention in Your Security Strategy

SHARED INTEL: FireMon survey shows security lags behind fast pace of hybrid cloud deployments

Microsoft warns of more disruptive BlueKeep attacks and urges patch installation

New Echobot Botnet targets Oracle, VMware Apps and includes 26 Exploits

Episode 157: Do we need an FDA for Software? Also: operationalizing Threat Intelligence

The number of exploits in the Echobot botnet reached 59

Best Identity and Access Management (IAM) Solutions for 2022

Keeper vs LastPass (2024 Comparison): Which Is Right for You?

Cyber Security Awareness and Risk Management

Stay Connected