CyberSecurity Insiders

FEBRUARY 8, 2021

Chinese Cybersecurity firm Qihoo 360 has discovered a new malware campaign that is being infecting vulnerable android devices, turning them into devices that can be used in automated Distributed Denial of Service(DDoS) campaigns. In July 2018, cyber crooks were found inducing Satori Botnet variants in Google phones through ADB ports.

Malware 131

Malware Mobile DDOS Cryptocurrency 131

Troy Hunt

JULY 6, 2018

— Troy Hunt (@troyhunt) June 29, 2018. Many blocked sites were redirected to affiliate ads and cryptocurrency mining scripts. link] pic.twitter.com/Tgs3gpIIax — The Tor Project (@torproject) July 2, 2018. pic.twitter.com/MJu9FDphWS — Troy Hunt (@troyhunt) June 30, 2018. It profited from it.

DDOS 117

DDOS Passwords Cryptocurrency Data breaches 117

Security Affairs

JUNE 22, 2021

The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. Experts defined DirtyMoe as a complex malware that has been designed as a modular system.

DNS 129

DNS Cryptocurrency Internet Internet 129

Security Affairs

OCTOBER 18, 2018

Group-IB has estimated that crypto exchanges suffered a total loss of $882 million due to targeted attacks between 2017 and 2018. This data was included in the annual Hi-Tech Crime Trends 2018 report, presented by Group-IB CTO, Dmitry Volkov, at the sixth international Cyber?rimeCon rimeCon conference.

Cyber Attacks 86

Cyber Attacks Cryptocurrency Phishing Social Engineering 86

SecureList

NOVEMBER 23, 2021

We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. In fact, from January through the end of October, Kaspersky detected more than 2,300 fraudulent global resources aimed at 85,000 potential crypto investors or users who are interested in cryptocurrency mining.

Cryptocurrency 104

Cryptocurrency Banking Cybercrime Ransomware 104

Security Affairs

SEPTEMBER 12, 2020

“There was an uncontrolled resource consumption and out-of-memory (OOM) vulnerability that could have been easily exploited in a denial-of-service (DoS/DDoS) attack against many Bitcoin, Litecoin, Namecoin and Decred nodes by any other network participant.” Two years ago, the Bitcoin protocol engineer Braydon Fuller.

Advertising 102

Advertising Cryptocurrency Engineering DDOS 102

Security Affairs

MARCH 21, 2022

The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. Experts defined DirtyMoe as a complex malware that has been designed as a modular system.

Malware 75

Malware Passwords DDOS Internet 75

SecureList

FEBRUARY 16, 2021

While the resource was down, cryptocurrency newbies were invited to download a copy of Bitcoin Core via a torrenting service. Cybercriminals used the names of well-known APT groups to intimidate victims, demanded ransoms in cryptocurrency, and carried out demonstration attacks to back up their threats.

DDOS 129

DDOS Cryptocurrency Marketing Internet 129

SiteLock

AUGUST 27, 2021

Website security protects your website from: DDoS attacks. Some sneaky malware attacks include backdoors, a type of malware that allows cybercriminals to access a site without the owner’s knowledge, and cryptojacking , which mines websites for cryptocurrency without showing any symptoms. A website scanner.

Small Business 98

Small Business Malware DDOS Engineering 98

SC Magazine

JUNE 25, 2021

Malicious hackers are increasingly mobbing the video game industry, with major companies suffering data breaches, having their source code sold or leaked online and games serving as playgrounds to push malware or mine cryptocurrencies. billion attacks tracked by the company across different countries.

Computers and Electronics 121

Computers and Electronics Media Marketing Cryptocurrency 121

Krebs on Security

MARCH 22, 2022

years in a Russian penal colony for convincing one of his top affiliates to launch a distributed denial-of-service (DDoS) attack against a competitor that shut down the ticketing system for the state-owned Aeroflot airline. Zukhov was arrested in Bulgaria in 2018 and extradited to the United States.

Banking 188

Banking Marketing DDOS Risk 188

Security Affairs

MAY 20, 2020

Sanix has been active on the cybercrime underground at least since 2018, he focuses in the sale of stolen data from organizations. Some of the most popular collections sold in the past by the same hacker are known as Collection #1, #2, #3, #4, #5 , Antipublic , and others.

Cybercrime 60

Cybercrime Passwords Advertising Hacking 60

Krebs on Security

DECEMBER 20, 2018

The seizure notice appearing on the homepage this week of more than a dozen popular “booter” or “stresser” DDoS-for-hire Web sites. They accept payment via PayPal, Google Wallet, and/or cryptocurrencies, and subscriptions can range in price from just a few dollars to several hundred per month. bullstresser[.]net.

DNS 176

DNS Computers and Electronics Government Internet 176

Security Affairs

FEBRUARY 27, 2019

Security researchers at Cisco Talos are warning of a spike in attacks on unsecured Elasticsearch clusters to drop cryptocurrency miners. Experts observed working exploits for the CVE-2018-7600 in Drupal (aka Drupalgeddon2 ) and the CVE-2017-10271 in Oracle WebLogic, and CVE-2018-1273 in Spring Data Commons.

Cryptocurrency 84

Cryptocurrency Advertising DDOS Malware 84

Security Affairs

SEPTEMBER 29, 2018

. “Unlike the aforementioned IoT botnets, this one tries to be more stealthy and persistent once the device is compromised, and it does not (yet) do the usual stuff a botnet does like DDOS , attacking all the devices connected to the internet, or, of course, mining cryptocurrencies.” pic.twitter.com/BrQzdfMFVB.

IoT 85

IoT Architecture Advertising DDOS 85

Security Affairs

AUGUST 8, 2018

DDoS attacks, ransomware-based campaigns, cryptocurrency mining campaigns). “This C&C server has actually been active since 6 th March 2018 but didn’t attract attention because of the low capacity of the “black” botnet at that time. ” reads the analysis published by Checkpoint security.

Malware 48

Malware DNS Encryption Banking 48

Security Affairs

APRIL 28, 2020

The Outlaw Hacking Group was first spotted by TrendMicro in 2018 when the cyber criminal crew targeted automotive and financial industries. The first version spotted by TrendMicro includes a DDoS script that could be used by botmaster to set-up DDoS for-hire service offered on the dark web.

Architecture 101

Architecture Malware Hacking DDOS 101

SecureList

MAY 31, 2021

If the victim organization is slow to pay up, even though its files are encrypted and some of its confidential data has been stolen, the attackers additionally threaten to carry out a DDoS attack. In addition to DDoS attacks, it has added spam and calls to clients and partners of the victim company to its toolbox.

Mobile 87

Mobile Adware Ransomware Malware 87

SecureList

OCTOBER 20, 2021

By 2018, however, they had realized that it is far more profitable to target organizations — with ransomware, stealers or remote access tools for conducting financial operations from within the networks. DDoS attacks — still in demand, albeit protection against DDoS attacks has become stronger.

Cybercrime 137

Cybercrime Banking Malware Ransomware 137

Krebs on Security

DECEMBER 14, 2023

KrebsOnSecurity began revisiting the research into Rescator’s real-life identity in 2018, after the U.S. However, the last update on that profile is from 2018, when Shefel appears to have legally changed his last name. Rusprofile reveals that at some point near the end of 2018, Shefel changed his last name to Lenin.

Cybercrime 218

Cybercrime Accountability Advertising Computers and Electronics 218

eSecurity Planet

JULY 28, 2021

Since blockchain’s arrival, cryptocurrency has framed the technology as permissionless, or a public blockchain. DDoS: Overwhelming the Network. In the age-old denial of service (DDoS) attack, a fleet of attacker devices can overwhelm an organization’s web server, thus blocking access to legitimate users.

Cybersecurity 135

Cybersecurity Cryptocurrency Technology Energy and Utilities 135

SecureList

MAY 27, 2022

In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general. The campaign has two goals: gathering information and stealing cryptocurrency. Roaming Mantis reaches Europe.

Phishing 103

Phishing Spyware Firmware Malware 103

Security Affairs

AUGUST 27, 2020

While security experts have been aware of printer vulnerabilities for quite a while, even previous large-scale attacks on printers like the Stackoverflowin hack in 2017 and the PewDiePie hack in 2018 did not seem to shock the public into securing their networked devices.

Hacking 143

Hacking IoT Firmware Internet 143

Threatpost

APRIL 23, 2018

A botnet has exploited a highly critical Drupal CMS vulnerability, which was previously disclosed by Drupal in March.

DDOS 48

DDOS IoT Cryptocurrency Malware 48

SecureList

APRIL 27, 2022

Subsequently, DDoS attacks hit several government websites. We had initially analyzed this Delphi malware in April 2018. This application contains a legitimate program called DeFi Wallet, that saves and manages a cryptocurrency wallet, but also implants a malicious file when executed.

Malware 131

Malware Firmware Government Phishing 131

Security Affairs

OCTOBER 31, 2018

Ahead of the 2018 US midterm elections , sellers are flooding the cybercrime underground markets with data from voter databases. “Thousands of Instagram followers, Facebook likes, YouTube views and Twitter retweets are available for a small amount of cryptocurrency on the dark web. ” continues the report.

Identity Theft 88

Identity Theft Advertising Hacking Cybercrime 88

SecureList

MAY 27, 2022

million) including denominated in cryptocurrency; $600,000; 500,000 euros; computer equipment, the crypto wallets that were used to perpetrate crimes, and 20 luxury cars that were purchased with illicitly obtained money.” Similar IoT-threat statistics are published in the DDoS report for Q1 2022. Attacks via web resources.

Mobile 96

Mobile Adware Ransomware Malware 96

SecureList

NOVEMBER 18, 2022

In particular, researchers found Operation In(ter)ception , a campaign operated by North Korean Lazarus group, which targets macOS users looking for cryptocurrency jobs. Detailed IoT-threat statistics are published in the DDoS report for Q3 2022. Attacks via web resources.

Mobile 84

Mobile Malware Ransomware IoT 84

SecureList

AUGUST 15, 2022

Cybercriminals were spreading malicious documents that exploited CVE-2017-11882 and CVE-2018-0802 , which are the best-known vulnerabilities in the Equation Editor component. The TraderTraitor campaign targets cryptocurrency and blockchain organizations, attacking with malicious crypto applications for both Windows and macOS.

Mobile 61

Mobile Adware Malware Ransomware 61

eSecurity Planet

NOVEMBER 2, 2022

In July 2001, the Code Red Worm attempted to subject the entire Internet to a distributed denial of service (DDoS) attack. Eventually, the infected computers were all directed to attempt a DDoS specifically on whitehouse.gov, though the White House managed to sidestep the assault. GandCrab burst onto the scene in 2018.

Malware 140

Malware Ransomware Antivirus Internet 140

Security Affairs

JANUARY 8, 2019

DDoS Attacks Will Become More Common. In the third quarter of 2018, DDoS attacks increased in frequency by 71 percent over the previous quarter. According to Kaspersky Lab, more than 120,000 individual pieces of malware were deployed against IoT devices in just the first half of 2018. This bodes ill for 2019.

Cybersecurity 86

Cybersecurity Small Business Internet Internet 86

Adam Levin

DECEMBER 27, 2019

With what we experienced in 2016 and 2018, is there any doubt there will be a rise in disinformation–homegrown and imported–of all stripe in the upcoming elections? Cryptocurrency miners will continue to get rich off of stolen electricity. Water finds its level, but it will be rough for a while. .

Cybersecurity 100

Cybersecurity CISO IoT Insurance 100