Security Affairs

JULY 27, 2020

The FBI issued an alert last week warning about the discovery of new network protocols that have been exploited to launch large-scale DDoS attacks. The Federal Bureau of Investigation sent an alert last week warning about large-scale distributed denial of service (DDoS) attacks that abused new network protocols. continues the report.

DDOS 110

DDOS IoT Internet Internet 110

Security Affairs

FEBRUARY 3, 2020

L inear eMerge E3 smart building access systems designed by N ortek Security & Control (NSC) are affected by a severe vulnerability (CVE-2019-7256) that has yet to be fixed and attackers are actively scanning the internet for vulnerable devices. Passwords can be found in p roduct documentation and compiled lists available on the Internet.”

DDOS 79

DDOS Hacking Internet Internet 79

Security Affairs

APRIL 28, 2020

Timetv.live is the latest Azeri news site targeted by Denial of Service (DDoS) attacks launched by Sandman threat actor, the attack took place on March 21, 2020. Just like many other DDoS attacks we have seen in the past against Azeri media, the attacker monitors the success of the floods using the HostTracker service.

DDOS 105

DDOS Media VPN Advertising 105

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack.

Scams 240

Scams DDOS Cryptocurrency Accountability 240

Security Affairs

FEBRUARY 2, 2024

. “As part of a detailed study of the cyber threat, a study of the received samples of malicious programs was conducted, the peculiarities of the functioning of the management server infrastructure were established, and more than 2,000 affected computers were identified in the Ukrainian segment of the Internet.”

Malware 100

Malware Internet Internet DDOS 100

Security Affairs

JANUARY 27, 2022

Puerto Rico’s Senate announced that is was it by a cyberattack that shut down its internet provider, phone system and official online page. The Senate of Puerto Rico announced this week that it was hit by a major cyberattack that disabled its internet provider, phone system and official online page. Pierluigi Paganini.

Energy and Utilities 102

Energy and Utilities DDOS Internet Internet 102

Security Affairs

JUNE 22, 2021

DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. SecurityAffairs – hacking, botnet).

DNS 130

DNS Cryptocurrency Internet Internet 130

Security Affairs

JUNE 9, 2020

that affects billions of devices, it could be exploited by attackers to carry out multiple malicious activities, including distributed denial-of-service (DDoS) attacks and data exfiltration. This vulnerability has been assigned CVE-2020-12695 and is also known as Call Stranger.” ” reads the alert published by CERT/CC.

DDOS 98

DDOS Internet Internet Advertising 98

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. com) with links to the bot was among the 48 domains associated with DDoS-for-hire services seized by the FBI in December.

IoT 116

IoT DDOS Malware Firmware 116

Security Affairs

JANUARY 19, 2021

The botnet appeared in the threat landscape in November 2020, in some cases the attacks leveraged recently disclosed vulnerabilities to inject OS commands. CVE-2020-7961 – Java unmarshalling flaw via JSONWS in Liferay Portal (in versions prior to 7.2.1 CE GA2) (disclosed on March 20, 2020). ” continues the analysis.

DDOS 139

DDOS DNS Malware Internet 139

Security Affairs

OCTOBER 2, 2022

Germany’s Bundeskriminalamt (BKA) arrested an individual (24) suspected of having stolen €4,000,000 from internet users via phishing attacks along with a two accomplices who are suspected. Investigators believe the gang relied on DDoS-for-hire services provided by other cybercriminals. SecurityAffairs – hacking, phishing).

Phishing 93

Phishing Banking DDOS Accountability 93

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. In 2020, Grichishkin was arrested outside of Russia on a warrant for providing bulletproof hosting services to cybercriminal gangs.

Cybercrime 207

Cybercrime Banking Computers and Electronics DDOS 207

SecureList

JUNE 8, 2022

A router is a gateway from the internet to a home or office — despite being conceived quite the opposite. Routers are forever being hacked and infected, and used to infiltrate local networks. During 2020 and 2021, more than 500 router vulnerabilities were found. Mirai is not the only DDoS malware to target routers.

DDOS 88

DDOS Passwords IoT Firmware 88

Thales Cloud Protection & Licensing

JANUARY 14, 2020

Along with innovation and technology proliferation, new challenges that will shape business during 2020. The adoption of emerging technologies like 5G will fuel the proliferation of Internet of Things (IoT) that’s often built with only a few security controls and therefore creating a larger attack surface that enterprises have to deal with.,

Data privacy 89

Data privacy IoT Data breaches Surveillance 89

Security Affairs

MAY 23, 2022

Fronton is a distributed denial-of-service (DDoS) botnet that was used by Russia-linked threat actors for coordinated disinformation campaigns. In March 2020, the collective of hacktivists called “ Digital Revolution ” claimed to have hacked a subcontractor to the Russian FSB. SecurityAffairs – hacking, Fronton botnet).

DDOS 114

DDOS Media Hacking Engineering 114

Security Affairs

OCTOBER 12, 2021

The botnet appeared on the threat landscape in November 2020, the attacks aimed at compromising the target systems to create an IRC botnet, which can later be used to conduct several malicious activities, including DDoS attacks and crypto-mining campaigns. SecurityAffairs – hacking, Necro botnet). from visual-tools.com.

DDOS 97

DDOS Surveillance Hacking Internet 97

Security Affairs

AUGUST 22, 2021

million customers Adobe addresses two critical vulnerabilities in Photoshop Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR Kalay cloud platform flaw exposes millions of IoT devices to hack Fortinet FortiWeb OS Command Injection allows takeover servers remotely 1.9 SecurityAffairs – hacking, newsletter).

Data breaches 100

Data breaches Mobile Ransomware DNS 100

SecureList

FEBRUARY 16, 2021

In Q4 2020, Citrix ADC (application delivery controller) devices became one such tool, when perpetrators abused their DTLS interface. Overall, Q4 remained within the parameters of 2020 trends. Extortionists’ activity regularly made the news throughout 2020. This trend continued in the last months of 2020.

DDOS 128

DDOS Cryptocurrency Marketing Internet 128

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. The botnet targets multiple architectures, including arm, bsd, x64, and x86.

Malware 142

Malware DDOS IoT Cybercrime 142

Security Affairs

FEBRUARY 16, 2023

Once the attacker gains control of a vulnerable device in this manner, they could take advantage by including the newly compromised devices in their botnet to conduct further attacks such as DDoS.” ” concludes the report. “Therefore, it is highly recommended that patches and updates are applied when possible.”

IoT 97

IoT DDOS Encryption Malware 97

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. .” The vulnerability was detailed in July 2020 by the security researchers Sanjana Sarda. Pierluigi Paganini.

IoT 139

IoT Firmware DNS Advertising 139

The Last Watchdog

NOVEMBER 9, 2020

The Internet of Things (IoT) has come a long, long way since precocious students at Carnegie Melon University installed micro-switches inside of a Coca-Cola vending machine so they could remotely check on the temperature and availability of their favorite beverages. Related: Companies sustain damage from IoT attacks That was back in 1982.

IoT 279

IoT Healthcare Internet Internet 279

Security Affairs

JUNE 15, 2021

A new variant of the Mirai botnet, tracked as Moobot, was spotted scanning the Internet for vulnerable Tenda routers. Researchers from AT&T Alien Lab have spotted a new variant of the Mirai botnet, tracked asu Moobot, which was scanning the Internet for the CVE-2020-10987 remote code-execution (RCE) issue in Tenda routers.

Malware 120

Malware Internet Internet DDOS 120

SecureList

SEPTEMBER 21, 2023

We conducted an analysis of the IoT threat landscape for 2023, as well as the products and services offered on the dark web related to hacking connected devices. Dark web services: DDoS attacks, botnets, and zero-day IoT vulnerabilities Of all IoT-related services offered on the dark web, DDoS attacks are worth examining first.

IoT 86

IoT DDOS Passwords Malware 86

Security Affairs

SEPTEMBER 27, 2020

fitness chains Town Sports leaked online Group-IB detects a series of ransomware attacks by OldGremlin HOW DO PROVIDERS IMPLEMENT INTERNET BLOCKING IN BELARUS? fitness chains Town Sports leaked online Group-IB detects a series of ransomware attacks by OldGremlin HOW DO PROVIDERS IMPLEMENT INTERNET BLOCKING IN BELARUS?

IoT 102

IoT Banking Advertising Ransomware 102

Security Affairs

MARCH 21, 2022

In June 2021, researchers from Avast warned of the rapid growth of the DirtyMoe botnet ( PurpleFox , Perkiler , and NuggetPhantom ), which passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. SecurityAffairs – hacking, botnet). ” Follow me on Twitter: @securityaffairs and Facebook.

Malware 76

Malware Passwords DDOS Internet 76

Security Affairs

MAY 5, 2020

Security researchers spotted a new piece of DDoS bot dubbed Kaiji that is targeting IoT devices via SSH brute-force attacks. The malicious code was designed to target Linux-based servers and Internet of Things (IoT) devices and use them as part of a DDoS botnet. MalwareMustDie (@malwaremustd1e) May 3, 2020. versionday[.]xyz

IoT 128

IoT Malware DDOS Advertising 128

Security Affairs

MARCH 1, 2020

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019. Lampion malware v2 February 2020. Hacking campaign targets sites running popular Duplicator WordPress plugin. Silence Hacking Crew threatens Australian banks of DDoS attacks. SecurityAffairs – hacking, newsletter). Pierluigi Paganini.

Banking 90

Banking Malware Advertising Ransomware 90

Security Affairs

NOVEMBER 26, 2021

Wi-Fi 6 officially arrived in late 2019, and Wi-Fi 6 enabled hardware was released throughout 2020. It’s not the 1st time TP-Link has faced critical vulnerabilities in their product line up, such bugs are widely leveraged by threat actors building IoT-based botnets like Mirai for further DDoS attacks and other malicious activities.

IoT 142

IoT Wireless DDOS VPN 142

Security Affairs

NOVEMBER 19, 2020

Infiltrating a cybercriminal operation can provide valuable data about different types of malicious activities, including DDoS attacks , malware distribution, and more. This really piqued our interest, because IRC botnets, while relatively widespread in the past, are considered a rarity in 2020. How we found the IRC botnet.

DDOS 140

DDOS IoT Malware Internet 140

Spinone

MARCH 17, 2018

The Internet of Things (IoT) is a term used to describe the network of interconnected electronic devices with “smart” technology. billion “things” connected to the Internet , a 30% increase from 2015. billion “things” connected to the Internet , a 30% increase from 2015.

Internet 40

Internet Internet Risk Computers and Electronics 40

Security Affairs

JULY 14, 2020

Malware researchers at Trend Micro have discovered a new version of the Mirai Internet of Things (IoT) botnet that includes an exploit for the CVE-2020-10173 vulnerability impacting Comtrend routers. Experts believe that vulnerability impacting Comtrend routers will likely be exploited by other DDoS botnets.

IoT 97

IoT Advertising DDOS Authentication 97

Security Affairs

NOVEMBER 1, 2021

The botnet was created to launch DDoS attacks and to insert advertisements in the legitimate HTTP traffic of the victims, most of which are in China (96%). On 2020-01-02, CNCERT reported that “the number of Bot node IP addresses associated with this botnet exceeds 5 million. SecurityAffairs – hacking, Pink botnet).

Architecture 124

Architecture DDOS Advertising Firmware 124

Security Affairs

OCTOBER 30, 2021

It is important to highlight that Africa has the fastest-growing telephone and Internet networks in the world, and it as the widest use of mobile banking services. Allegedly, more than 61% of companies in thisregion were affected by ransomware in 2020 alone. SecurityAffairs – hacking, African Cyberthreat Assessment Report 2021).

Cybercrime 78

Cybercrime Scams DDOS Banking 78

Security Affairs

MAY 19, 2020

Experts first observed the exploitation of the flaw in the wild on April 24, 2020, as part of an evolution of the Hoaxcalls botnet that was first discovered early of April. The botnet borrows the code from Tsunami and Gafgyt botnets, it expanded the list of targeted devices and added new distributed denial of service (DDoS) capabilities.

IoT 108

IoT DDOS Authentication Advertising 108

The Last Watchdog

AUGUST 4, 2021

Related: Kaseya hack raises more supply chain worries. Criminal hacking rings are carrying out big sweeps , 24X7, hunting for well-known application vulnerabilities that they can manipulate to breach company networks. billion in 2020, according to Mordor Intelligence. Web apps and mobile apps are where they action is.

Mobile 214

Mobile Marketing Digital transformation Risk 214

Security Affairs

SEPTEMBER 20, 2020

The Mozi botnet accounted for 90% of the IoT network traffic observed between October 2019 and June 2020, IBM reported. According to the researchers, in the last months of 2019, the botnet was mainly involved in DDoS attacks. SecurityAffairs – hacking, Mozi botnet). reads the analysis published by the experts.

IoT 126

IoT DDOS Architecture Passwords 126