Security Affairs

MARCH 10, 2020

Necurs botnet is one of the largest spam botnet , it has been active since at least 2012 and was involved in massive campaigns spreading malware such as the Locky ransomware , the Scarab ransomware , and the Dridex banking Trojan. SecurityAffairs – malware, Necurs botnet). million spam messages to more than 40.6

Advertising 72

Advertising Malware Cybercrime Government 72

Security Affairs

JANUARY 31, 2021

Shadowsocks is a free and open-source encryption protocol project, widely used in China to circumvent Internet censorship. It was created in 2012 by a Chinese programmer named “ clowwindy “, and multiple implementations of the protocol have been made available since.

Firewall 139

Firewall Surveillance Internet Internet 139

Security Affairs

FEBRUARY 16, 2023

Below is the list of vulnerabilities exploited by V3G4: CVE-2012-4869 : FreePBX Elastix Remote Command Execution Vulnerability Gitorious Remote Command Execution Vulnerability CVE-2014-9727 : FRITZ!Box Upon execution, the bot prints xXxSlicexXxxVEGA. to the console. If a botnet process already exists, the botnet client will and exit.

IoT 96

IoT DDOS Encryption Malware 96

Security Affairs

FEBRUARY 10, 2022

Technological advancements have come a long way – from when internet utility was very limited to when internet connection was achieved only through internet protocol (IP) version 4 (IPv4) addresses to this modern age where IPv6 is the next big thing. This helps to provide necessary security and anonymity for the internet user.

Internet 83

Internet Internet Data privacy Technology 83

Security Affairs

MARCH 25, 2020

The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014. Unlike other China-based actors, the group used custom malware in cyber espionage operations, experts observed 46 different malware families and tools in APT41 campaigns.

Telecommunications 119

Telecommunications Healthcare Education Advertising 119

Security Affairs

JUNE 13, 2022

Researchers from Palo Alto Networks defined the PingPull RAT as a “difficult-to-detect” backdoor that leverages the Internet Control Message Protocol (ICMP) for C2 communications. However, the group has been active at least since 2012.

Telecommunications 89

Telecommunications Government Internet Internet 89

Security Affairs

AUGUST 14, 2019

The list of flaws addressed by the tech giant doesn’t include zero-days or publicly disclosed vulnerabilities, 29 issues were rated as ‘Critical’ and affect Microsoft’s Edge and Internet Explorer web browsers, Windows, Outlook and Office. This issue reminds us of the flaw exploited by the Stuxnet malware back in 2010.

Authentication 84

Authentication Advertising Internet Internet 84

Security Affairs

NOVEMBER 19, 2020

Infiltrating a cybercriminal operation can provide valuable data about different types of malicious activities, including DDoS attacks , malware distribution, and more. When targeted by a threat actor, the honeypot system uses their intrusion attempt to gain valuable information about the attacker. How we found the IRC botnet.

DDOS 140

DDOS IoT Malware Internet 140

Security Affairs

SEPTEMBER 21, 2019

The bad side of all of these adventure is, now I have my research materials scattering around all over the internet during these past three years (smile). Windows related malware posts. Linux related malware posts. Mac OSX related malware posts. Other malware reports. SecurityAffairs – MalwareMustDie, malware).

Malware 80

Malware Advertising Security Awareness Media 80

Security Affairs

NOVEMBER 9, 2019

In June 2018, experts at Kaspersky were investigating attacks against government and military entities in South and Southeast Asian countries, The experts tracked the campaign as EasternRoppels, they speculate it may have started as far back as 2012. After that, the malware starts receiving commands. Pierluigi Paganini.

Encryption 46

Encryption Passwords Malware Software 46

Security Affairs

MARCH 2, 2019

SI-LAB captured a piece of the FlawedAmmyy malware that leverages undetected XLM macros as an Infection Vehicle to compromise user’s devices. The threat is only detected later when an MSI file (Windows installer) drops and execute the first infection stage of the malware. macro) embedded that is not detectable by AV engines.

Malware 84

Malware Antivirus Technology Phishing 84

Security Affairs

FEBRUARY 26, 2021

Our online security team has uncovered a massive data breach originating from a misconfigured Amazon Bucket, which was operated by a Turkish Legal advising company, INOVA YÖNETIM & AKTÜERYAL DANI?MANLIK. Inova has been operating since 2012 and has handled thousands of cases since then. How and Why We Discovered the Breach.

Data breaches 96

Data breaches Insurance Identity Theft Education 96

Security Affairs

JANUARY 28, 2021

The APT group has been active since 2012, experts linked the group to the Hezbollah militant group. ClearSky experts linked the Lebanese Cedar group to intrusions at telco companies, internet service providers, hosting providers, and managed hosting and applications companies. CVE-2012-3152).

Internet 134

Internet Internet Hacking Malware 134

Security Affairs

MAY 16, 2023

MustangPanda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. Upon opening the reports, the infection process starts leading to the deployment of malware on the victim’s system.

Firmware 97

Firmware Encryption Government Malware 97

Security Affairs

JANUARY 11, 2021

Andrei Tyurin is accused of being the mastermind of the organization that targeted the US financial institution from 2012 to mid-2015. and foreign companies in furtherance of various criminal enterprises operated by Shalon and his co-conspirators, including unlawful internet gambling businesses and international payment processors.

Marketing 86

Marketing Hacking Identity Theft Banking 86