Cybercrime, DDOS, Hacking and Information Security

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs

FEBRUARY 8, 2024

Several media reported that three million electric toothbrushes were compromised and recruited into a DDoS botnet. The Swiss newspaper Aargauer Zeitung first published the news of a DDoS attack, carried out on January 30, that involved three million compromised electric toothbrushes. Is it true? What the f is wrong with you people????

DDOS

DDOS IoT Media Internet

Law enforcement shutdown a long-standing DDoS-for-hire service

Security Affairs

JUNE 17, 2023

Polish police, as part of the international law enforcement operation PowerOFF, dismantled a DDoS-for-hire service that has been active since at least 2013. An international operation codenamed PowerOff led to the shutdown of a DDoS-for-hire service that has been active since at least 2013. Viewer discretion is advised.

DDOS

DDOS Computers and Electronics Cybercrime Cryptocurrency

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. The availability of the source in the cybercrime ecosystem can allow threat actors to develop their own version of the Hello Kitty ransomware. The HelloKitty gang has been active since January 2021.

Cybercrime

Cybercrime Ransomware DDOS Encryption

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Hackers breached four prominent underground cybercrime forums

Security Affairs

MARCH 6, 2021

A suspicious wave of attacks resulted in the hack of four cybercrime forums Verified, Crdclub, Exploit, and Maza since January. Since January, a series of mysterious cyberattacks that resulted in the hack of popular Russian-language cybercrime forums. No other information looked to be compromised in the attack.”

Cybercrime

Cybercrime DDOS Hacking Passwords

Dutch police warn customers of a popular DDoS booter service

Security Affairs

OCTOBER 13, 2021

Dutch police warn customers of a distributed denial-of-service (DDoS) website of stopping using the service to avoid prosecution. Dutch police warn customers of a booter service, abused to carry out distributed denial-of-service (DDoS) attacks, of to stop using it to avoid prosecution. by carrying out DDoS attacks on March 19.

DDOS

DDOS Cybercrime IoT Hacking

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. SecurityAffairs – hacking, Enemybot).

DDOS

DDOS Architecture Malware Cybercrime

HelloKitty ransomware gang also targets victims with DDoS attacks

Security Affairs

NOVEMBER 1, 2021

According to the alert, the ransomware gang is launching distributed denial-of-service (DDoS) attacks as part of its extortion activities. In some cases, if the victim does not respond quickly or does not pay the ransom, the threat actors will launch a Distributed Denial of Service (DDoS) attack on the victim company’s public facing website.”

DDOS

DDOS Ransomware Cybercrime Encryption

Cloudflare blocked a 2.5 Tbps DDoS attack aimed at the Minecraft server

Security Affairs

OCTOBER 13, 2022

Cloudflare mitigated a record distributed denial-of-service (DDoS) attack against Wynncraft, one of the largest Minecraft servers. Cloudflare announced it has mitigated a record distributed denial-of-service (DDoS) attack against Wynncraft, one of the largest Minecraft servers. SecurityAffairs – hacking, Mirai).

DDOS

DDOS Threat Reports Hacking Cybercrime

Diicot cybercrime gang expands its attack capabilities

Security Affairs

JUNE 19, 2023

Cado researchers recently detected an interesting attack pattern linked to an emerging cybercrime group tracked as Diicot (formerly, “Mexals”) and described in analyses published by Akamai and Bitdefender. Evidence collected by Cado suggests the deployment of a botnet having DDoS capabilities.

Cybercrime

Cybercrime DDOS Internet Internet

Fortinet warns of a spike of the activity linked to AndoryuBot DDoS botnet

Security Affairs

MAY 9, 2023

A DDoS botnet dubbed AndoryuBot has been observed exploiting an RCE, tracked as CVE-2023-25717, in Ruckus access points. The activity is associated with a known DDoS botnet tracked as AndoryuBot that first appeared in February 2023. The bot supports multiple DDoS attack techniques and uses SOCKS5 proxies for C2 communications.

DDOS

DDOS Wireless Architecture Advertising

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Security Affairs

OCTOBER 11, 2023

A Mirai-based DDoS botnet tracked as IZ1H9 has added thirteen new exploits to target routers from different vendors, including D-Link, Zyxel, and TP-Link. The botnet supports multiple DDoS attacks, including UDP, HTTP Flood, UDP Plain, and TCP SYN. “The exposure of vulnerable devices can result in severe security risks.

DDOS

DDOS Wireless Architecture IoT

Cloudflare blocked record-breaking 71 million request-per-second DDoS attack

Security Affairs

FEBRUARY 14, 2023

Cloudflare mitigated a record distributed denial-of-service (DDoS) that reached 71 Million requests per second. Cloudflare announced it has mitigated a record hyper-volumetric distributed denial-of-service (DDoS) attack that peaked at over 71 million requests per second (RPS). “This was a weekend of record-breaking DDoS attacks.

DDOS

DDOS Threat Reports Healthcare Cryptocurrency

FBI seized 13 domains linked to DDoS-for-hire platforms

Security Affairs

MAY 9, 2023

DoJ announced the seizure of 13 new domains associated with DDoS-for-hire platforms as part of Operation PowerOFF. Justice Department announced the seizure of 13 domains linked to DDoS-for-hire services as part of a coordinated international law enforcement effort known as Operation PowerOFF. com, ragebooter(.)com, com, downthem(.)org

DDOS

DDOS Internet Internet Hacking

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites

Security Affairs

MARCH 25, 2023

National Crime Agency (NCA) revealed that it has set up a number of fake DDoS-for-hire sites to infiltrate the online criminal underground. The UK National Crime Agency announced it has infiltrated the online criminal marketplace by setting up several sites purporting to offer DDoS-for-hire services. In December, the U.S.

DDOS

DDOS Marketing Hacking Cybercrime

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Security Affairs

AUGUST 20, 2021

Web infrastructure and website security company Cloudflare announced to have mitigated the largest ever volumetric DDoS attack to date. Cloudflare, the web infrastructure and website security company, announced that it has mitigated the largest ever volumetric distributed denial of service (DDoS) attack to date.

DDOS

DDOS Telecommunications Internet Internet

FBI seized 48 domains linked to DDoS-for-Hire service platforms

Security Affairs

DECEMBER 15, 2022

Department of Justice (DoJ) seized forty-eight domains that offered DDoS-for-Hire Service Platforms to crooks. Department of Justice (DoJ) this week announced the seizure of 48 domains associated with the DDoS-for-Hire Service platforms (aka Booter services) used by threat actors. SecurityAffairs – hacking, DDoS).

DDOS

DDOS Internet Internet Education

New evolving Abcbot DDoS botnet targets Linux systems

Security Affairs

NOVEMBER 13, 2021

Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from Qihoo 360’s Netlab security team have spotted a new botnet, tracked as Abcbot, that targets Linux systems to launch distributed denial-of-service (DDoS) attacks.

DDOS

DDOS Malware Passwords Cryptocurrency

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Security Affairs

NOVEMBER 15, 2021

Cloudflare announced to have mitigated a distributed denial-of-service (DDoS) attack that peaked at almost 2 terabytes per second (Tbps). is an American web infrastructure and website security company that provides content delivery network and DDoS mitigation services. SecurityAffairs – hacking, DDoS).

DDOS

DDOS DNS IoT Internet

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

Security Affairs

SEPTEMBER 9, 2021

The massive DDoS attack that has been targeting the internet giant Yandex was powered b a completely new botnet tracked as M?ris. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks. technique for DDoS attacks.

DDOS

DDOS Internet Internet IoT

Security Service of Ukraine arrested a man operating a huge DDoS botnet

Security Affairs

OCTOBER 11, 2021

Ukrainian police arrested a cybercriminal who controlled a botnet composed of 100,000 devices that was available for rent to launch DDoS attacks. Security Service of Ukraine (SSU) has arrested a hacker who controlled a DDoS botnet composed of 100,000 devices that was available for rent. SecurityAffairs – hacking, cybercrime).

DDOS

DDOS Computers and Electronics Cybercrime Advertising

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Security Affairs

MARCH 7, 2021

The REvil ransomware operators are using DDoS attacks and voice calls to journalists and victim’s business partners to force victims to pay the ransom. Malware #Ransomware #REvil REvil Ransomware launched a service for contact to news media, companies for the best pressure at no cost, and DDoS (L3, L7) as a paid service.

DDOS

DDOS Ransomware Media Malware

Yandex is under the largest DDoS attack in the history of Runet

Security Affairs

SEPTEMBER 9, 2021

The Russian internet service provider Yandex is under a massive distributed denial-of-service (DDoS) attack that began last week. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks. SecurityAffairs – hacking, DDoS).

DDOS

DDOS Internet Internet Firmware

German police seized the darknet marketplace Nemesis Market

Security Affairs

MARCH 23, 2024

An operation conducted by the Federal Criminal Police Office in Germany (BKA) and the Frankfurt cybercrime combating unit (ZIT) led to the seizure of the infrastructure of the darknet marketplace Nemesis Market in Germany and Lithuania. Crimemarket was a prominent platform for trading illegal drugs, narcotics, and cybercrime services.

Marketing

Marketing Cybercrime DDOS Internet

New Condi DDoS botnet targets TP-Link Wi-Fi routers

Security Affairs

JUNE 21, 2023

“FortiGuard Labs encountered recent samples of a DDoS -as-a-service botnet calling itself Condi. The malware compromises the devices to build a distributed denial-of-service (DDoS) botnet. ”Thus, it is strongly recommended to always apply the latest security patches and updates as soon as possible.”

DDOS

DDOS Malware Advertising Hacking

KmsdBot, a new evasive bot for cryptomining activity and DDoS attacks

Security Affairs

NOVEMBER 14, 2022

The malware was employed in cryptocurrency mining campaigns and to launch denial-of-service (DDoS) attacks. The first DDoS attack observed by Akamai targeted a gaming company named FiveM , which allows gamers to host custom private servers for Grand Theft Auto Online. SecurityAffairs – hacking, KmsdBot).

DDOS

DDOS Malware Cryptocurrency Architecture

Fake DDoS protection pages on compromised WordPress sites lead to malware infections

Security Affairs

AUGUST 21, 2022

Threat actors compromise WordPress sites to display fake Cloudflare DDoS protection pages to distribute malware. DDoS Protection pages are associated with browser checks performed by WAF/CDN services which verify if the site visitor is a human or a bot. The file poses as a tool required to bypass the DDoS verification.

DDOS

DDOS Malware Antivirus Firewall

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Russian Cybercrime Trickbot Group is systematically attacking Ukraine

Security Affairs

JULY 8, 2022

Ukraine has been targeted with a wide variety of cyber activity leading up to and since the invasion, including distributed-denial-of-service (DDoS) attacks and defacements and attempted destructive activity attributed to Russian state-sponsored actors.” SecurityAffairs – hacking, Ukraine). ” concludes IBM.

Cybercrime

Cybercrime Malware DDOS Ransomware

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Security Affairs

NOVEMBER 10, 2023

After ChatGPT, Anonymous Sudan took down the Cloudflare website with a distributed denial-of-service (DDoS) attack. The hacktivist group Anonymous Sudan claimed responsibility for the massive distributed denial-of-service (DDoS) attack that took down the website of Cloudflare. “ To be clear, there was no Cloudflare breach.

DDOS

DDOS Cryptocurrency Accountability Media

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

Security Affairs

JUNE 25, 2023

Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition appeared first on Security Affairs.

DDOS

DDOS Cybercrime Spyware Malware

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Security Affairs

MAY 16, 2021

Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. The hackers pointed out that there is no way to decrypt data without their decryptor, they also threatened the company to target it with a DDoS attack in case they will refuse to pay the ransom.

Hacking

Hacking Ransomware DDOS Manufacturing

Database, source code allegedly related to bulletproof hosting, once Parler’s service provider, up for sale on hacker forum

Security Affairs

JUNE 2, 2021

Group-IB discovered a database allegedly belonging to a bulletproof hosting provider DDoS-Guard posted for sale on a cybercrime forum. The database supposedly contains information about DDoS-Guard’s customers, including their names, IP-addresses, and payment information. SecurityAffairs – hacking, DDoS-Guard).

DDOS

DDOS Cybercrime Authentication Accountability

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Security Affairs

MARCH 10, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army , threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” Pierluigi Paganini.

DDOS

DDOS Digital transformation Malware Advertising

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Security Affairs

OCTOBER 3, 2019

Dutch police seized a bulletproof hosting service in a major takedown, the infrastructure was used by tens of IoT botnets involved in DDoS attacks. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. ” continues the statement. Pierluigi Paganini.

DDOS

DDOS IoT Cybercrime Advertising

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack. Chaput said whoever was behind the DDoS was definitely not using point-and-click DDoS tools, like a booter or stresser service. In May 2020, Zipper told another Lolzteam member that quot[.]pw pw was their domain.

Scams

Scams DDOS Cryptocurrency Accountability

Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

Security Affairs

JULY 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

DDOS

DDOS Hacking Spyware Surveillance

Telegram is becoming the paradise of cyber criminals

Security Affairs

SEPTEMBER 27, 2021

Telegram is becoming an essential platform for cybercriminal activities, crooks use it but and sell any kind of stolen data and hacking tools. Researchers from vpnMentor recently published a report that sheds the light on the use of Telegram in the cybercrime ecosystem. Some channels have 10,000s of followers.”

Cybercrime

Cybercrime Hacking Mobile DDOS

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Security Affairs

DECEMBER 16, 2023

The Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Another healthcare organization suffered a ransomware attack, the Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch).

Ransomware

Ransomware Hacking Insurance Healthcare

Experts analyzed attacks against poorly managed Linux SSH servers

Security Affairs

DECEMBER 27, 2023

Researchers warn of attacks against poorly managed Linux SSH servers that mainly aim at installing DDoS bot and CoinMiner. Researchers at AhnLab Security Emergency Response Center (ASEC) are warning about attacks targeting poorly managed Linux SSH servers, primarily focused on installing DDoS bots and CoinMiners.

DDOS

DDOS Passwords Firewall Accountability

New ShellBot bot targets poorly managed Linux SSH Servers

Security Affairs

MARCH 21, 2023

New ShellBot DDoS bot malware, aka PerlBot, is targeting poorly managed Linux SSH servers, ASEC researchers warn. AhnLab Security Emergency response Center (ASEC) discovered a new variant of the ShellBot malware that was employed in a campaign that targets poorly managed Linux SSH servers. and PowerBots (C) GohacK.

DDOS

DDOS Malware Passwords Accountability

Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition

Security Affairs

JUNE 17, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9

Data breaches

Data breaches DDOS Backups Firewall

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. Image: Lumen’s Black Lotus Labs. Usually, these users have no idea their systems are compromised.

Malware

Malware VPN Internet Internet

Trickbot spreads malware through new distribution channels

Security Affairs

OCTOBER 16, 2021

TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The gang support other cybercrime groups such as known Hive0105, Hive0106 (aka TA551 or Shathak), and Hive0107, supporting them in expanding their malware campaigns. SecurityAffairs – hacking, cyber security).

Malware

Malware Cybercrime DDOS Social Engineering

Security Affairs newsletter Round 394

Security Affairs

NOVEMBER 20, 2022

SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 394 appeared first on Security Affairs. Ukraine Police dismantled a transnational fraud group that made €200 million per year Lockbit gang leaked data stolen from global high-tech giant Thales. Pierluigi Paganini.

DDOS

DDOS Cybercrime Ransomware Phishing

Unraveling the truth behind the DDoS attack from electric toothbrushes

Law enforcement shutdown a long-standing DDoS-for-hire service

Webinars

Trending Sources

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Webinars

Hackers breached four prominent underground cybercrime forums

Dutch police warn customers of a popular DDoS booter service

Enemybot, a new DDoS botnet appears in the threat landscape

HelloKitty ransomware gang also targets victims with DDoS attacks

Cloudflare blocked a 2.5 Tbps DDoS attack aimed at the Minecraft server

Diicot cybercrime gang expands its attack capabilities

Fortinet warns of a spike of the activity linked to AndoryuBot DDoS botnet

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Cloudflare blocked record-breaking 71 million request-per-second DDoS attack

FBI seized 13 domains linked to DDoS-for-hire platforms

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites

Cloudflare mitigated the largest ever volumetric DDoS attack to date

FBI seized 48 domains linked to DDoS-for-Hire service platforms

New evolving Abcbot DDoS botnet targets Linux systems

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

Security Service of Ukraine arrested a man operating a huge DDoS botnet

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Yandex is under the largest DDoS attack in the history of Runet

German police seized the darknet marketplace Nemesis Market

New Condi DDoS botnet targets TP-Link Wi-Fi routers

KmsdBot, a new evasive bot for cryptomining activity and DDoS attacks

Fake DDoS protection pages on compromised WordPress sites lead to malware infections

Developer of DDoS Mirai based botnets sentenced to prison

Russian Cybercrime Trickbot Group is systematically attacking Ukraine

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Database, source code allegedly related to bulletproof hosting, once Parler’s service provider, up for sale on hacker forum

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Interview With a Crypto Scam Investment Spammer

Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

Telegram is becoming the paradise of cyber criminals

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Experts analyzed attacks against poorly managed Linux SSH servers

New ShellBot bot targets poorly managed Linux SSH Servers

Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition

Who and What is Behind the Malware Proxy Service SocksEscort?

Trickbot spreads malware through new distribution channels

Security Affairs newsletter Round 394

Stay Connected