2021, DDOS and Hacking - Cyber Security Informer

DDoS attacks in Q2 2021

SecureList

JULY 28, 2021

In terms of big news, Q2 2021 was relatively calm, but not completely eventless. For example, April saw the active distribution of a new DDoS botnet called Simps — the name under which it introduced itself to owners of infected devices. Another new DDoS vector has yet to be harnessed by cybercriminals.

DDOS

DDOS DNS IoT Marketing

Akamai prevented the largest DDoS attack on a US financial company

Security Affairs

SEPTEMBER 10, 2023

Akamai announced it has mitigated the largest distributed denial-of-service (DDoS) attack on a U.S. Cybersecurity firm Akamai successfully identified and prevented a massive distributed denial-of-service (DDoS) attack targeting an unnamed, leading American financial institution. financial company. gigabits per second.

DDOS

DDOS Financial Services Hacking Ransomware

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Security Affairs

OCTOBER 11, 2023

A Mirai-based DDoS botnet tracked as IZ1H9 has added thirteen new exploits to target routers from different vendors, including D-Link, Zyxel, and TP-Link. Below is the list of exploit payloads added to the bot: D-Link: CVE-2015-1187 , CVE-2016-20017 , CVE-2020-25506 , and CVE-2021-45382. ” concludes the analysis.

DDOS

DDOS Wireless Architecture IoT

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

DDoS attacks in Q3 2022

SecureList

NOVEMBER 7, 2022

In Q3 2022, DDoS attacks were, more often than not, it seemed, politically motivated. As before, most news was focused on the conflict between Russia and Ukraine, but other high-profile events also affected the DDoS landscape this quarter. The attackers stated on Telegram that they were “testing a new DDoS method.”

DDOS

DDOS Computers and Electronics Internet Internet

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. A note posted by a Verified forum administrator concerning the hack of its registrar in January. The forum was hacked through the domain registrar.

Cybercrime

Cybercrime Hacking Passwords Accountability

DDoS attacks in Q2 2022

SecureList

AUGUST 3, 2022

Politically-motivated cyberattacks dominated the DDoS landscape in the second quarter of 2022 just as they did in the previous reporting period. The pro-Russian hacktivists Killnet, which first surfaced in January 2022, claimed responsibility for DDoS attacks on the websites of various European organizations from April through June.

DDOS

DDOS Government Marketing IoT

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. SecurityAffairs – hacking, Enemybot).

DDOS

DDOS Architecture Malware Cybercrime

A massive DDoS knocked offline Belgian government websites

Security Affairs

MAY 4, 2021

A massive distributed denial of service (DDoS) attack shut down Belgiums’ government websites, internal networks were also impacted. A massive distributed denial of service (DDoS) attack hit most of the Belgium government ’s IT network, according to the media the attack also knocked offline internal systems. Around 7.30

DDOS

DDOS Government Education Media

HelloKitty ransomware gang also targets victims with DDoS attacks

Security Affairs

NOVEMBER 1, 2021

According to the alert, the ransomware gang is launching distributed denial-of-service (DDoS) attacks as part of its extortion activities. In some cases, if the victim does not respond quickly or does not pay the ransom, the threat actors will launch a Distributed Denial of Service (DDoS) attack on the victim company’s public facing website.”

DDOS

DDOS Ransomware Cybercrime Encryption

DDoS attacks in Q1 2022

SecureList

APRIL 25, 2022

The DDoS landscape in Q1 2022 was shaped by the ongoing conflict between Russia and Ukraine: a significant part of all DDoS-related news concerned these countries. In mid-January, the website of Kyiv Mayor Vitali Klitschko was hit by a DDoS attack, and the websites of a number of Ukrainian ministries were defaced. News overview.

DDOS

DDOS Cybercrime Media Internet

New evolving Abcbot DDoS botnet targets Linux systems

Security Affairs

NOVEMBER 13, 2021

Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from Qihoo 360’s Netlab security team have spotted a new botnet, tracked as Abcbot, that targets Linux systems to launch distributed denial-of-service (DDoS) attacks. Pierluigi Paganini.

DDOS

DDOS Malware Passwords Cryptocurrency

DDoS attacks in Q4 2020

SecureList

FEBRUARY 16, 2021

In December, Canada’s Laurentian University reported a DDoS attack. Educational institutions are recommended to use anti-DDoS solutions and strong firewall settings, and partner up with ISPs. In early October, a DDoS attack was reported by the PUBG Mobile team. But it dealt with the problem in a matter of minutes.

DDOS

DDOS Cryptocurrency Marketing Internet

Router security in 2021

SecureList

JUNE 8, 2022

Routers are forever being hacked and infected, and used to infiltrate local networks. During 2020 and 2021, more than 500 router vulnerabilities were found. The nvd.nist.gov website presents different figures, but they too show a significant increase in the number of router vulnerabilities found in 2020 and 2021. Verdict. %*.

DDOS

DDOS Passwords IoT Firmware

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Security Affairs

AUGUST 20, 2021

Web infrastructure and website security company Cloudflare announced to have mitigated the largest ever volumetric DDoS attack to date. Cloudflare, the web infrastructure and website security company, announced that it has mitigated the largest ever volumetric distributed denial of service (DDoS) attack to date. So peaking at 17.2

DDOS

DDOS Telecommunications Internet Internet

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Security Affairs

MARCH 7, 2021

The REvil ransomware operators are using DDoS attacks and voice calls to journalists and victim’s business partners to force victims to pay the ransom. Malware #Ransomware #REvil REvil Ransomware launched a service for contact to news media, companies for the best pressure at no cost, and DDoS (L3, L7) as a paid service.

DDOS

DDOS Ransomware Media Malware

Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date

Security Affairs

JANUARY 27, 2022

Tbps distributed denial of service (DDoS) attack targeting an Azure customer. Microsoft announced that its Azure DDoS protection platform has mitigated a record 3.47 The news of the attack was reported in the “ Azure DDoS Protection —2021 Q3 and Q4 DDoS attack trends.” ” reads the report.

DDOS

DDOS Digital transformation DNS Cyber Risk

Microsoft Azure Attack Illustrates Ongoing DDoS Threats

eSecurity Planet

OCTOBER 14, 2021

Officials with Microsoft’s Azure public cloud said the company in late August was able to stave off a record distributed denial-of-service (DDoS) attack against a European customer that originated in the Asia-Pacific region. Mitigating the DDoS Attack. DDoS an Ongoing Threat. That said, DDoS attacks continue to be a problem.

DDOS

DDOS IoT Cyber threats Financial Services

Internet in New Zealand disrupted due to a DDoS Cyber Attack

CyberSecurity Insiders

SEPTEMBER 3, 2021

A Distributed Denial of Service attack shortly known as DDoS resulted in the disruption of internet services across New Zealand leading to shut down or temporary closure of businesses from afternoon today, i.e. September 3rd,2021. To those who are unaware of what is a DDoS attack, here’s a bit of explanation.

Cyber Attacks

Cyber Attacks DDOS Internet Internet

Matryosh DDoS botnet targets Android-Based devices via ADB

Security Affairs

FEBRUARY 4, 2021

Netlab researchers spotted a new Android malware, dubbed Matryosh , that is infecting devices to recruit them in a distributed denial-of-service (DDoS) botnet. On January 25, 2021, researchers at 360 netlab detected a suspicious ELF file, initially attributed to Mirai , but that later revealed his nature, a new bot tracked as Matryosh.

DDOS

DDOS DNS Antivirus Malware

Akamai dealt with an 800Gbps ransom DDoS against a gambling company

Security Affairs

APRIL 1, 2021

Akamai has recently involved in the mitigation of two of the largest known ransom DDoS attacks, one of them peaked at 800Gbps. CDN and cybersecurity firm Akamai warns of a worrying escalation in ransom DDoS attacks since the beginning of the year. ” Likely DDoS extortion attacks. reads the analysis published by Akamai.

DDOS

DDOS Security Intelligence Hacking Cybersecurity

Moobot botnet spreads by exploiting CVE-2021-36260 flaw in Hikvision products

Security Affairs

DECEMBER 8, 2021

The Mirai -based Moobot botnet is rapidly spreading by exploiting a critical command injection flaw, tracked as CVE-2021-36260 , in the webserver of several Hikvision products. The Moobot was first documented by Palo Alto Unit 42 researchers in February 2021, the recent attacks demonstrated that its authors are enhancing their malware.

Firmware

Firmware DDOS Malware IoT

CloudFlare blocked a record HTTPs DDoS attack peaking at 15 rps

Security Affairs

APRIL 28, 2022

Cloudflare has mitigated a distributed denial-of-service (DDoS) attack that peaked at 15.3 Cloudflare announced to have mitigated a distributed denial-of-service (DDoS) attack that peaked at 15.3 million request-per-second (RPS), which is one of the largest HTTPS DDoS attacks blocked by the company.

DDOS

DDOS Encryption Hacking Cybersecurity

Major blackouts across Puerto Rico. Are the DDoS and the fire linked?

Security Affairs

JUNE 14, 2021

pic.twitter.com/3ejpfBIH89 — David Begnaud (@DavidBegnaud) June 10, 2021. ———— pic.twitter.com/MM3ZSHsKwt — LUMA Puerto Rico (@lumaenergypr) June 10, 2021. The same day the blackout took place, the company announced that a major DDoS attack disrupted its online services. ” reported NPR.

DDOS

DDOS Mobile Hacking Accountability

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Security Affairs

NOVEMBER 10, 2023

After ChatGPT, Anonymous Sudan took down the Cloudflare website with a distributed denial-of-service (DDoS) attack. The hacktivist group Anonymous Sudan claimed responsibility for the massive distributed denial-of-service (DDoS) attack that took down the website of Cloudflare. “ To be clear, there was no Cloudflare breach.

DDOS

DDOS Cryptocurrency Accountability Media

Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)

Security Affairs

JANUARY 26, 2023

Experts warn of a spike in the attacks that between August and October 2022 attempted to exploit a Realtek Jungle SDK RCE (CVE-2021-35394). Palo Alto Networks researchers reported that between August and October 2022 the number of attacks that attempted to exploit a Realtek Jungle SDK RCE ( CVE-2021-35394 ) (CVSS score 9.8)

DDOS

DDOS IoT Manufacturing Malware

Over 80,000 Hikvision cameras can be easily hacked

Security Affairs

AUGUST 23, 2022

Security researchers from CYFIRMA have discovered over 80,000 Hikvision cameras affected by a critical command injection vulnerability tracked as CVE-2021-36260. The Chinese vendor addressed the issue in September 2021, but tens of thousands of devices are yet to be patched. wrote the expert. “.

Hacking

Hacking Firmware Internet Internet

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Krebs on Security

SEPTEMBER 10, 2021

On Thursday evening, KrebsOnSecurity was the subject of a rather massive (and mercifully brief) distributed denial-of-service (DDoS) attack. But on Thursday DDoS protection firm Qrator Labs identified the culprit — “Meris” — a new IoT monster that first emerged at the end of June 2021. In its Aug.

IoT

IoT DDOS Internet Internet

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

The Last Watchdog

JULY 18, 2023

July 18, 2022 – Around 30,000 websites get hacked every day , with the majority of those cyberattacks due to human error. A new study by HostingAdvice, the premier authority on web hosting, found that 32% of Americans say they’ve gotten hacked from visiting a sketchy website and of those, 53% got a computer virus. Gainesville, Fla.,

Hacking

Hacking DDOS Small Business Spyware

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Security Affairs

MARCH 10, 2022

Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army , threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” Liberator is advertised as a DDoS tool to launch attacks against “Russian propaganda websites.” SecurityAffairs – hacking, IT Army).

DDOS

DDOS Digital transformation Malware Advertising

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Security Affairs

AUGUST 4, 2022

Major Taiwan government websites were temporarily forced offline by distributed denial of service (DDoS) attacks attacks during the visit to Taipei of US House Speaker Nancy Pelosi. The campaign was launched by the APT10 group in November 2021, but it hit a peak between February 10 and 13 2022, Taiwanese cybersecurity firm CyCraft reported.

DDOS

DDOS Government Cyber Attacks Hacking

Hamas May Be Threat to 8chan, QAnon Online

Krebs on Security

JANUARY 5, 2021

In October 2020, KrebsOnSecurity looked at how a web of sites connected to conspiracy theory movements QAnon and 8chan were being kept online by DDoS-Guard , a dodgy Russian firm that also hosts the official site for the terrorist group Hamas. New research shows DDoS-Guard relies on data centers provided by a U.S.-based

DDOS

DDOS Internet Internet Cybercrime

DirtyMoe botnet infected 100,000+ Windows systems in H1 2021

Security Affairs

JUNE 22, 2021

DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. SecurityAffairs – hacking, botnet).

DNS

DNS Cryptocurrency Internet Internet

Cyber Security Roundup for March 2021

Security Boulevard

FEBRUARY 28, 2021

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, February 2021. The sudo vulnerability aka CVE-2001-3156 , seemed to go under the radar after it was announced and patches were released on 26th January 2021. Npower App Hack.

Energy and Utilities

Energy and Utilities Ransomware DDOS Accountability

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

The HelloKitty gang has been active since January 2021. In November 2021, the US FBI has published a flash alert warning private organizations of the evolution of the HelloKitty ransomware (aka FiveHands). The ransomware gang targets their victims’ websites with DDoS attacks if they refuse to pay the ransom.

Cybercrime

Cybercrime Ransomware DDOS Encryption

Apple AirTag can be hacked say security research

CyberSecurity Insiders

MAY 14, 2021

Apple AirTags can be hacked says a security expert from Germany and that too within a week of the sale of the very first device launched prestigiously in the first week of May’2021. Released on April 30th, 2021 the device uses Bluetooth signals to help its users find their devices respectively.

Hacking

Hacking Firmware DDOS Scams

A hack in hand is worth two in the bush

SecureList

OCTOBER 16, 2023

So far, various cyber activities in the digital realm have been observed, including DDoS-attacks , information warfare, and hacktivism campaigns. On October 8, a major hack on the Israeli Dorad private power station was announced on underground channels by the Cyber Av3ngers group.

Hacking

Hacking DDOS Encryption Malware

Reading INTERPOL the African Cyberthreat Assessment Report 2021

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa. SecurityAffairs – hacking, African Cyberthreat Assessment Report 2021).

Cybercrime

Cybercrime Scams DDOS Banking

The dark web index 2021, report

Security Affairs

JUNE 4, 2021

PrivacyAffairs released the Dark Web Index 2021, the document provides the prices for illegal services/products available in the black marketplaces. Cryptocurrencies are represented in hacked accounts to trading sites. And there are even more specialized products such as DDoS attacks, email databases, and malware. Social Media.

Accountability

Accountability Marketing Hacking Cryptocurrency

Security Roundup September 2021

BH Consulting

SEPTEMBER 14, 2021

Access denied: large-scale attack highlights DDoS risk . How good are your defences against DDoS? BankInfoSecurity’s report took a similar tack, quoting the NetScout Atlas Security Engineering and Response Team which found over 10 million DDoS attacks launched in 2020, up from 8.5 million in 2019. Sign up here.

DDOS

DDOS Passwords Artificial Intelligence Authentication

Conti Ransomware Group Diaries, Part IV: Cryptocrime

Krebs on Security

MARCH 7, 2022

The victim does not have to trust the person who hacked their computer because they can verify that the smart contract will fairly handle the exchange.” We release ddos. Or a variant of a letter to the creators about the possibility of a ransom if they want the ddos ??to ” Stern wrote. Crypto falls in price.

Ransomware

Ransomware Cryptocurrency DDOS Scams

Puerto Rico was hit by a major cyberattack

Security Affairs

JANUARY 27, 2022

In March 2021, Puerto Rico Electric Power Authority (PREPA) power utility confirmed early this week that it has been hacked over the weekend. The same day the blackout took place, the company announced that a major DDoS attack disrupted its online services. It is still unclear whether the fire and DDoS attack are connected.

Energy and Utilities

Energy and Utilities DDOS Internet Internet

Moobot botnet spreads by targeting Cacti and RealTek flaws

Security Affairs

APRIL 3, 2023

FortiGuard Labs researchers observed an ongoing hacking campaign targeting Cacti ( CVE-2022-46169 ) and Realtek ( CVE-2021-35394 ) vulnerabilities to spread ShellBot and Moobot malware. The ShellBot , also known as PerlBot, is a Perl-based DDoS bot that uses IRC protocol for C2 communications.

DDOS

DDOS Malware Hacking Education

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

Security Affairs

JUNE 25, 2023

Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition appeared first on Security Affairs.

DDOS

DDOS Cybercrime Spyware Malware

This Week in Security News - Jan 8, 2021

Trend Micro

JANUARY 7, 2021

Investigation Launched into Role of JetBrains Product in SolarWinds Hack and TeamTNT Now Deploying DDoS-Capable IRC Bot TNTbotinger.

DDOS

DDOS Hacking Phishing

DDoS attacks in Q2 2021

Akamai prevented the largest DDoS attack on a US financial company

Webinars

Trending Sources

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Webinars

DDoS attacks in Q3 2022

Three Top Russian Cybercrime Forums Hacked

DDoS attacks in Q2 2022

Enemybot, a new DDoS botnet appears in the threat landscape

A massive DDoS knocked offline Belgian government websites

HelloKitty ransomware gang also targets victims with DDoS attacks

DDoS attacks in Q1 2022

New evolving Abcbot DDoS botnet targets Linux systems

DDoS attacks in Q4 2020

Router security in 2021

Cloudflare mitigated the largest ever volumetric DDoS attack to date

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date

Microsoft Azure Attack Illustrates Ongoing DDoS Threats

Internet in New Zealand disrupted due to a DDoS Cyber Attack

Matryosh DDoS botnet targets Android-Based devices via ADB

Akamai dealt with an 800Gbps ransom DDoS against a gambling company

Moobot botnet spreads by exploiting CVE-2021-36260 flaw in Hikvision products

CloudFlare blocked a record HTTPs DDoS attack peaking at 15 rps

Major blackouts across Puerto Rico. Are the DDoS and the fire linked?

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)

Over 80,000 Hikvision cameras can be easily hacked

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Hamas May Be Threat to 8chan, QAnon Online

DirtyMoe botnet infected 100,000+ Windows systems in H1 2021

Cyber Security Roundup for March 2021

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Apple AirTag can be hacked say security research

A hack in hand is worth two in the bush

Reading INTERPOL the African Cyberthreat Assessment Report 2021

The dark web index 2021, report

Security Roundup September 2021

Conti Ransomware Group Diaries, Part IV: Cryptocrime

Puerto Rico was hit by a major cyberattack

Moobot botnet spreads by targeting Cacti and RealTek flaws

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

This Week in Security News - Jan 8, 2021

Stay Connected