Security Affairs

DECEMBER 25, 2019

According to the researchers, in the last months, the botnet was mainly involved in DDoS attacks, experts also noticed that the sample borrows part of code from the Gafgyt malware. The botnet implements a custom extended Distributed Hash Table (DHT) protocol that provides a lookup service similar to a hash table ([key, value]).

DDOS 78

DDOS Passwords Wireless Advertising 78

Security Affairs

JUNE 15, 2021

Port 37215: Huawei Home routers RCE Vulnerability (CVE-2017-17215). Then the script attempts to download a list of filenames (associated with different CPU architectures), executes each one of them, achieves persistence through a crontab, and deletes itself. SecurityAffairs – hacking, ransomware). Pierluigi Paganini.

Malware 119

Malware Internet Internet DDOS 119

Security Affairs

SEPTEMBER 29, 2018

According to experts from Avast, the Torii bot has been active since at least December 2017, it could targets a broad range of architectures, including ARM, MIPS, x86, x64, PowerPC, and SuperH. The Torii IoT botnet stands out for the largest sets of architectures it is able to target. Pierluigi Paganini.

IoT 84

IoT Architecture Advertising DDOS 84

Security Affairs

FEBRUARY 27, 2019

Experts observed working exploits for the CVE-2018-7600 in Drupal (aka Drupalgeddon2 ) and the CVE-2017-10271 in Oracle WebLogic, and CVE-2018-1273 in Spring Data Commons. The experts observed a second threat actor using the exploit for the CVE-2014-3120 to deliver a malicious code that is a derivative of the Bill Gates DDoS malware.

Cryptocurrency 83

Cryptocurrency Advertising DDOS Malware 83

eSecurity Planet

DECEMBER 8, 2023

DNS Server Hardening DNS server hardening can be very complex and specific to the surrounding architecture. Design robust server architecture to improve redundancy and capacity for resilience against failure or DDoS attacks. Implement rate limiting to harden against DDoS and DNS tunneling attacks.

DNS 103

DNS DDOS Firewall Architecture 103

SecureList

OCTOBER 20, 2021

Applications have become more complex, their architecture better. It could be compromised directly or by hacking the account of someone with access to the website management. The year 2016 saw banks in Russia hacked one after another. DDoS attacks — still in demand, albeit protection against DDoS attacks has become stronger.

Cybercrime 137

Cybercrime Banking Malware Ransomware 137

Security Affairs

NOVEMBER 11, 2020

Botnet operators monetize their efforts via XMRig, cgmining and with DDoS-for-hire services. . The bot includes exploits for Oracle WebLogic Server vulnerabilities CVE-2019-2725 and CVE-2017-10271 , and the Drupal RCE flaw tracked as CVE-2018-7600. The payload is named “pty” followed by a number used to map the architecture.

IoT 116

IoT Malware DDOS Architecture 116

Security Affairs

NOVEMBER 29, 2019

Compared to its predecessors, the sixth “Hi-Tech Crime Trends” report is the first to contain chapters devoted to the main industries attacked and covers the period from H2 2018 to H1 2019, as compared to the period from H2 2017 to H1 2018. Today, private companies cannot legally conduct such operations.

Banking 86

Banking Telecommunications Marketing Internet 86

eSecurity Planet

APRIL 6, 2023

More recently, some threat groups have begun to add data destruction to their arsenal to raise the stakes even further, and DDoS attacks have also been threatened as a means of getting organizations to pay ransoms. Lapsus$ This hacking group is famous for using an extortion and destruction approach without organizing ransomware payloads.

Ransomware 93

Ransomware Backups Encryption Cybersecurity 93