2015, Cybercrime and DDOS - Cyber Security Informer

Oops: DanaBot Malware Devs Infected Their Own PCs

Krebs on Security

MAY 22, 2025

government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot , a prolific strain of information-stealing malware that has been sold on Russian cybercrime forums since 2018. Artem Aleksandrovich Kalinkin September 2022 grand jury indictment naming the 16 defendants

Malware

Malware Cybercrime Government Banking

The Dutch police took down 15 DDoS-for-hire services in a week

Security Affairs

APRIL 13, 2020

Dutch authorities have taken down 15 DDoS-for-hire services in a week, this is another success of law enforcement in the fight against cybercrime. An operation conducted by Dutch authorities last week has shut down 15 DDoS-for-hire services (aka DDoS booters or DDoS stressor), states a press release published by Dutch police.

DDOS

DDOS Cybercrime Advertising Government

Thinking of Hiring or Running a Booter Service? Think Again.

Krebs on Security

JANUARY 17, 2023

Most people who operate DDoS-for-hire businesses attempt to hide their true identities and location. Proprietors of these so-called “booter” or “stresser” services — designed to knock websites and users offline — have long operated in a legally murky area of cybercrime law. Image: archive.org.

DDOS

DDOS Cybercrime Government Engineering

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

AWS mitigated largest DDoS attack ever of 2.3 Tbps

Security Affairs

JUNE 17, 2020

Tbps DDoS attack, the largest ever, which surpassed the previous record of 1.7 Amazon announced it has mitigated the largest ever DDoS attack of 2.3 ” The report didn’t name the target of the DDoS attack, AWS experts only revealed that the magnitude was obtained with CLDAP reflection attack. Pierluigi Paganini.

DDOS

DDOS Advertising Internet Internet

The operator of DDoS-for-hire service pleads guilty

Security Affairs

MARCH 3, 2019

Usatyuk developed and operated other DDoS-for-hire services with a co-conspirator between August 2015 and November 2017. 12, 2017, an advertising on the ExoStresser website ( exostress.in) said that the booter service alone had launched 1,367,610 DDoS attacks, and caused targeted victim computer systems to suffer 109,186.4

DDOS

DDOS Advertising Cybercrime Cyber Attacks

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Security Affairs

OCTOBER 3, 2019

Dutch police seized a bulletproof hosting service in a major takedown, the infrastructure was used by tens of IoT botnets involved in DDoS attacks. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. ” continues the statement. Pierluigi Paganini.

DDOS

DDOS IoT Cybercrime Advertising

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Security Affairs

OCTOBER 11, 2023

A Mirai-based DDoS botnet tracked as IZ1H9 has added thirteen new exploits to target routers from different vendors, including D-Link, Zyxel, and TP-Link. Below is the list of exploit payloads added to the bot: D-Link: CVE-2015-1187 , CVE-2016-20017 , CVE-2020-25506 , and CVE-2021-45382. ” concludes the analysis.

DDOS

DDOS Wireless Architecture IoT

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

Law enforcement take down 15 DDoS-for-Hire services

Security Affairs

DECEMBER 22, 2018

The Department of Justice (DoJ) announced that the FBI seized 15 domains associated with DDoS-for-hire services. The FBI has seized 15 domains associated with DDoS-for-hire services (aka booters or stressers ) that were used by their customers to launch powerful DDoS attacks. Authorities Take Down 15 DDoS-for-Hire Websites.

DDOS

DDOS Advertising Internet Internet

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

Security Affairs

NOVEMBER 11, 2019

Researchers from Radware reported that massive TCP SYN-ACK DDoS reflection attacks hit Amazon, SoftLayer and telecom infrastructure in the last month. Researchers from Radware are warning of a wave of TCP SYN-ACK DDoS reflection attacks that in the last 30 days hit Amazon, SoftLayer and telecom infrastructure. Pierluigi Paganini.

DDOS

DDOS Telecommunications Advertising Cybercrime

Duke-Cohan sentenced to three years in prison due to false bomb threats and DDoS

Security Affairs

DECEMBER 10, 2018

The British teenager George Duke-Cohan (19) has been sentenced to three years in prison due to false bomb threats and carrying out DDoS attacks. The team was offering a DDoS-for-hire service that has many similarities with the booter implemented by the popular Lizard Squad hacking crew. Security Affairs – cybercrime, DDoS).

DDOS

DDOS Advertising Hacking Cybercrime

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

Security Affairs

OCTOBER 27, 2018

Security researchers at FortiGuard Labs have discovered a new DDoS-for-hire service called “ 0x-booter” built with leaked code that implements an easy to use interface. “ The DDoS-for-hire service allows users to power different attacks, primarily at the Transport and Application layers. ” .

DDOS

DDOS IoT Advertising Hacking

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware

Ransomware Cybercrime Accountability Malware

Anonymous Belgium hacker identified after dropping USB drive while throwing Molotov cocktail

Security Affairs

JUNE 25, 2019

the police raided his house and investigated into his computer and electronic devices revealing a long cybercrime activity. The member of Anonymous was also involved in DDoS attacks against online banking system of the Crelan Bank that shut down the portal on numerous occasions. Court documents refer to the hacktivist as a Brecht S.,

DDOS

DDOS Banking Computers and Electronics Cybercrime

The author of the Mirai botnet gets six months of house arrest

Security Affairs

OCTOBER 30, 2018

million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University. million in compensation for DDoS attacks against the systems of Rutgers University. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS IoT Advertising Malware

Hackers targeted the US Census Bureau network, DHS report warns

Security Affairs

OCTOBER 11, 2020

.” In the past, the US Census has been hit by attacks, such as hacks and DDoS attacks during a 2018 test of census systems attributed to Russia-linked hackers and a 2015 hack attributed to the Anonymous collective. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. critical infrastructure.

Government

Government Advertising Hacking Data collection

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. Upon installing the threat, the bot drops a file in /tmp/.pwned

Malware

Malware DDOS IoT Cybercrime

Creator of multiple IoT botnets, including Satori, pleaded guilty

Security Affairs

SEPTEMBER 4, 2019

Kenneth Currin Schuchman (21) from Vancouver, Washington pleaded guilty to creating and operating multiple DDoS IoT botnet , including Satori. Kenneth Currin Schuchman (21) from Vancouver, Washington, aka Nexus Zeta, pleaded guilty to creating and operating multiple DDoS IoT botnets. SecurityAffairs – Satori, cybercrime).

IoT

IoT DDOS Internet Internet

Mirai authors avoid the jail by helping US authorities in other investigations

Security Affairs

SEPTEMBER 19, 2018

Three men who admitted to being the authors of the Mirai botnet avoided the jail after helping the FBI in other cybercrime investigations. Now three individuals who admitted to being the authors of the infamous botnet avoided the jail after helping feds in another cybercrime investigations. ” continues the press release.

Cybercrime

Cybercrime DDOS Cryptocurrency Advertising

Security Affairs newsletter Round 251

Security Affairs

FEBRUARY 16, 2020

Massive DDoS attack brought down 25% Iranian Internet connectivity. Safer internet day – Cybercrime facts Infographic. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly newsletter arrived! The best news of the week with Security Affairs. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Banking Advertising Internet

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

Raccoon Malware, a success case in the cybercrime ecosystem. Silence Hacking Crew threatens Australian banks of DDoS attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. FBI recommends using passphrases instead of complex passwords. Lampion malware v2 February 2020. Pierluigi Paganini.

Banking

Banking Malware Advertising Ransomware

Cybersecurity threats: what awaits us in 2023?

SecureList

NOVEMBER 9, 2022

We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side. And that (b) we are also likely to see a steep increase in DDoS extortion campaigns as the Cyberwar in Ukraine leads to all-time-high levels of DDoS attacks. I expect that the theft of medical data (ex.

Cybersecurity

Cybersecurity Cyber Insurance Cybercrime IoT

AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server

Security Affairs

APRIL 28, 2019

Threat actors leverage the vulnerability to install denial of service (DDoS) malware and crypto-currency miners, and to remotely execute code. ” The AESDDoS bot involved in the recent attacks has the ability to launch several types of DDoS attacks, including SYN, LSYN, UDP, UDPS, and TCP flood. . Pierluigi Paganini.

DDOS

DDOS Malware Advertising Software

British hacker sentenced to jail for attack on Liberian Telecoms firms

Security Affairs

JANUARY 11, 2019

An employee of the rival firm Cellcom paid Kaye to carry out a DDoS attack on the Liberian phone and internet provider Lonestar. Daniel Kaye admitted that the DDoS attack aimed at the African telco company inadvertently isolated Liberia from the Internet. SecurityAffairs – Liberia, DDoS). ” reported the BBC. .

DDOS

DDOS Telecommunications Advertising Internet

Ukrainian police dismantled a bot farm involved in multiple spam campaigns

Security Affairs

OCTOBER 3, 2019

Cybercrime is a prolific business, criminal organizations continues to make profits with illegal activities in the cyberspace, but police are ready to contrast them. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. . “Cyber ??

Cybercrime

Cybercrime VPN Advertising Accountability

Security Affairs newsletter Round 199 – News of the week

Security Affairs

FEBRUARY 3, 2019

Cobalt cybercrime gang abused Google App Engine in recent attacks. Law enforcement worldwide hunting users of DDoS-for-Hire services. Imperva mitigated DDoS attack generated 500 Million Packets per Second, the largest ever. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. 20% discount.

DDOS

DDOS Data breaches Advertising Cybercrime

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

Security Affairs

MAY 20, 2020

The man is known in the cybercrime underground for selling billions of stolen credentials. Sanix has been active on the cybercrime underground at least since 2018, he focuses in the sale of stolen data from organizations. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Cybercrime

Cybercrime Passwords Advertising Hacking

85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections

Security Affairs

OCTOBER 31, 2018

Ahead of the 2018 US midterm elections , sellers are flooding the cybercrime underground markets with data from voter databases. “Some of the hackers and hacking teams “offer to target government entities for the purposes of database manipulation, economic/corporate espionage, DDoS attacks, and botnet rentals.”

Identity Theft

Identity Theft Advertising Hacking Cybercrime

A new Adwind variant involved in attacks on US petroleum industry

Security Affairs

OCTOBER 1, 2019

The Adwind RAT was first discovered early 2012, the experts dubbed it Frutas RAT and later it was identified with other names, Unrecom RAT (February 2014), AlienSpy (October 2014), and recently JSocket RAT (June 2015). DDoS attacks, brute-forcing attacks). .” Pierluigi Paganini. SecurityAffairs – Adwind, malware).

Malware

Malware Advertising DDOS Cybercrime

Security Affairs newsletter Round 186 – News of the week

Security Affairs

OCTOBER 28, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. . · Message Decryption Key for Signal Desktop application stored in plain text. · The fix for the DOM-based XSS in Branch.io

DDOS

DDOS IoT Advertising Media

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Security Affairs

AUGUST 27, 2020

In the context of UltraRank, the report exemplifies the JS-sniffers’ transformation from a minor online threat into a complex one supported by organized cybercrime. Cybercrime prodigy. The earliest of them, Campaign 2, dates back to 2015, while Campaign 12 continues to this very day.

Banking

Banking Cybercrime Marketing Advertising

Underestimating the FONIX – Ransomware as a Service could be an error

Security Affairs

OCTOBER 11, 2020

The actors behind FONIX RaaS advertised several products on various cybercrime forums. Currently, FONIX does not appear to be threatening victims with additional consequences (such as public data exposure or DDoS attacks) for non-compliance.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Encryption Advertising DDOS

Moobot botnet is back and targets vulnerable D-Link routers

Security Affairs

SEPTEMBER 7, 2022

The analysis of the code revealed that the MooBot bot will also send heartbeat messages to the C2 server and parse commands from C2 to start a DDoS attack on a specific IP address and port number. Now the MooBot has re-emerged in a new attack wave of attacks that started in August, targeting vulnerable D-Link routers. Pierluigi Paganini.

DDOS

DDOS Encryption Passwords Hacking

Security Affairs newsletter Round 240

Security Affairs

NOVEMBER 17, 2019

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure. TA505 Cybercrime targets system integrator companies. DDoS-for-Hire Services operator sentenced to 13 months in prison. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Spyware Advertising Ransomware

Security Affairs newsletter Round 248

Security Affairs

JANUARY 26, 2020

For the second time in a few days, Greek Government websites hit by DDoS attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack. Cisco Webex flaw allows unauthenticated remote attackers to join private meetings.

Data breaches

Data breaches Advertising Antivirus DDOS

ElectrumDoSMiner botnet reached 152,000 hosts

Security Affairs

APRIL 29, 2019

Researchers at Malwarebytes are monitoring the evolution of the ElectrumDoSMiner DDoS botnet that reached 152,000 infected hosts. MalwareBytes researchers are closely monitoring attacks against users of the popular Electrum Bitcoin wallet, in particular, the evolution of the Electrum DDoS botnet. Pierluigi Paganini.

DDOS

DDOS Advertising Cyber Attacks Malware

New Linux/DDosMan threat emerged from an evolution of the older Elknot

Security Affairs

APRIL 1, 2019

The popular expert unixfreaxjp analyzed a new China ELF DDoS’er malware tracked as “Linux/DDoSMan” that evolves from the Elknot malware to deliver new ELF bot. The code seems inspired from multiple source code of China basis DDoS client, like Elknot. Figure 2: The C2 software for Linux DDoS.

DDOS

DDOS Malware Encryption Penetration Testing

Security Affairs newsletter Round 210 – News of the week

Security Affairs

APRIL 21, 2019

A new DDoS technique abuses HTML5 Hyperlink Audit Ping in massive attacks. Operator of Codeshop Cybercrime Marketplace Sentenced to 90 months in prison. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Romanian duo convicted of fraud Scheme infecting 400,000 computers. Pierluigi Paganini.

Computers and Electronics

Computers and Electronics Data breaches Spyware Advertising

Experts spotted a new Mirai variant that targets new processors

Security Affairs

APRIL 10, 2019

The new samples also use a new “TCP SYN” DDoS attack option called “attack_method_ovh.” The improvements observed by the experts will expand the number of potential targets giving the attackers more DDoS firepower and posing a severe risk to the Internet infrastructure. ” continues the analysis.

Architecture

Architecture DDOS IoT Internet

Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns

Security Affairs

APRIL 9, 2020

Group-IB Threat Intelligence has tracked down more than 500 posts on underground forums in which users offered coronavirus discounts and promotional codes on DDoS, spamming, and other services to stimulate demand, affected by the pandemic. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing

Phishing Malware Spyware DDOS

Oops: DanaBot Malware Devs Infected Their Own PCs

The Dutch police took down 15 DDoS-for-hire services in a week

Trending Sources

Thinking of Hiring or Running a Booter Service? Think Again.

Enemybot, a new DDoS botnet appears in the threat landscape

AWS mitigated largest DDoS attack ever of 2.3 Tbps

The operator of DDoS-for-hire service pleads guilty

Finland’s Most-Wanted Hacker Nabbed in France

Developer of DDoS Mirai based botnets sentenced to prison

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Law enforcement take down 15 DDoS-for-Hire services

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure

Duke-Cohan sentenced to three years in prison due to false bomb threats and DDoS

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

A few dollars to bring down sites with new Bushido-based DDoS-for-hire service

How Did Authorities Identify the Alleged Lockbit Boss?

Anonymous Belgium hacker identified after dropping USB drive while throwing Molotov cocktail

The author of the Mirai botnet gets six months of house arrest

Hackers targeted the US Census Bureau network, DHS report warns

EnemyBot malware adds new exploits to target CMS servers and Android devices

Creator of multiple IoT botnets, including Satori, pleaded guilty

Mirai authors avoid the jail by helping US authorities in other investigations

Security Affairs newsletter Round 251

Security Affairs newsletter Round 253

Cybersecurity threats: what awaits us in 2023?

AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server

British hacker sentenced to jail for attack on Liberian Telecoms firms

Ukrainian police dismantled a bot farm involved in multiple spam campaigns

Security Affairs newsletter Round 199 – News of the week

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

85 Millions of voter records available for sale ahead of the 2018 US Midterm Elections

A new Adwind variant involved in attacks on US petroleum industry

Security Affairs newsletter Round 186 – News of the week

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Underestimating the FONIX – Ransomware as a Service could be an error

Moobot botnet is back and targets vulnerable D-Link routers

Security Affairs newsletter Round 240

Security Affairs newsletter Round 248

ElectrumDoSMiner botnet reached 152,000 hosts

New Linux/DDosMan threat emerged from an evolution of the older Elknot

Security Affairs newsletter Round 210 – News of the week

Experts spotted a new Mirai variant that targets new processors

Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns

Stay Connected