2022, Blog, DDOS and Hacking - Cyber Security Informer

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks

Security Affairs

MAY 28, 2022

360 Qihoo reported DDoS attacks launched by APT-C-53 (aka Gamaredon) conducted through the open-source DDoS Trojan program LOIC. “We found that multiple C2 servers distributed an open-source DDoS Trojan program LOIC compiled by.net from March 4th to 5th, 2022.” SecurityAffairs – hacking, Gamaredon.

DDOS

DDOS Malware Phishing Hacking

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Security Affairs

AUGUST 22, 2022

LockBit ransomware gang claims to have hacked the IT giant Entrust and started leaking the stolen files. The Lockbit ransomware gang claimed to have hacked the company and is threatening to leak the stolen files. Entrust blog still down on your left and official statement on your right. Entrust Corp. Entrust Corp. Tor leak site.

DDOS

DDOS Hacking InfoSec Ransomware

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS

DDOS Architecture Malware Cybercrime

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

FBI seized 13 domains linked to DDoS-for-hire platforms

Security Affairs

MAY 9, 2023

DoJ announced the seizure of 13 new domains associated with DDoS-for-hire platforms as part of Operation PowerOFF. Justice Department announced the seizure of 13 domains linked to DDoS-for-hire services as part of a coordinated international law enforcement effort known as Operation PowerOFF. com, ragebooter(.)com, com, downthem(.)org

DDOS

DDOS Internet Internet Hacking

Fortinet warns of a spike of the activity linked to AndoryuBot DDoS botnet

Security Affairs

MAY 9, 2023

A DDoS botnet dubbed AndoryuBot has been observed exploiting an RCE, tracked as CVE-2023-25717, in Ruckus access points. The activity is associated with a known DDoS botnet tracked as AndoryuBot that first appeared in February 2023. The bot supports multiple DDoS attack techniques and uses SOCKS5 proxies for C2 communications.

DDOS

DDOS Wireless Architecture Advertising

A DDoS attack took down Finnish govt sites as Ukraine’s President addresses MPs

Security Affairs

APRIL 9, 2022

A massive DDoS attack took down Finnish government websites while Ukrainian President Zelenskyy addressed Finland’s members of parliament (MPs). StandWithUkraine [link] — MFA Finland (@Ulkoministerio) April 8, 2022. link] — Puolustusministeriö (@DefenceFinland) April 8, 2022. SecurityAffairs – hacking, APT28).

DDOS

DDOS Government Hacking Cybersecurity

Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites

Security Affairs

MAY 4, 2022

Pro-Ukraine hackers are using Docker images to launch distributed denial-of-service (DDoS) attacks against a dozen Russian and Belarusian websites. The DDoS attacks also targeted three Lithuanian media websites. SecurityAffairs – hacking, domain name system). To nominate, please visit:? Pierluigi Paganini.

DDOS

DDOS Media Government Engineering

Pro-Russian group Killnet launched DDoS attacks on Romanian govt sites

Security Affairs

APRIL 30, 2022

A series of DDoS attacks launched by Russian hacktivists are targeting several Romanian government websites. The Romanian national cyber security and incident response team, DNSC, warns of a series of distributed denial-of-service (DDoS) attacks targeting government websites. The attacks have started on April 29, 2022, at 04:00.

DDOS

DDOS Banking Government Cyber Attacks

CloudFlare blocked a record HTTPs DDoS attack peaking at 15 rps

Security Affairs

APRIL 28, 2022

Cloudflare has mitigated a distributed denial-of-service (DDoS) attack that peaked at 15.3 Cloudflare announced to have mitigated a distributed denial-of-service (DDoS) attack that peaked at 15.3 million request-per-second (RPS), which is one of the largest HTTPS DDoS attacks blocked by the company.

DDOS

DDOS Encryption Hacking Cybersecurity

SLP flaw allows DDoS attacks with an amplification factor as high as 2200 times

Security Affairs

APRIL 25, 2023

A flaw in the Service Location Protocol (SLP), tracked as CVE-2023-29552, can allow to carry out powerful DDoS attacks. impacting the Service Location Protocol ( SLP ) can be exploited by threat actors to conduct powerful volumetric DDoS attacks. A high-severity security vulnerability (CVE-2023-29552, CVSS score: 8.6)

DDOS

DDOS Internet Internet Firewall

The largest Russian bank Sberbank hit by a massive DDoS attack

Security Affairs

NOVEMBER 9, 2023

The largest and oldest bank in Russia Sberbank faced the record-breaking DDoS attack that reached 1 million RPS. Sberbank , the Russian banking and financial services giant, announced that it was recently hit by a record-breaking distributed denial of service (DDoS) attack that reached 1 million RPS. reads the post published by Google.

DDOS

DDOS Banking Cyber Attacks Financial Services

Ongoing DDoS attacks from compromised sites hit Ukraine

Security Affairs

APRIL 28, 2022

Ukraine CERT-UA warns of ongoing DDoS attacks targeting pro-Ukraine sites and the government web portal. SecurityAffairs – hacking, Ukraine). The post Ongoing DDoS attacks from compromised sites hit Ukraine appeared first on Security Affairs. ” reads the advisory of the Ukraine CERT-UA. To nominate, please visit:?

DDOS

DDOS Banking Government Hacking

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Image: SentinelOne.com.

DDOS

DDOS Internet Internet Government

Let’s give a look at the Dark Web Price Index 2022

Security Affairs

JUNE 15, 2022

PrivacyAffairs released the Dark Web Index 2022, the document provides the prices for illegal services/products available in the black marketplaces. The document updates the information provided in the Dark Web Index 2022 report. The document updates the information provided in the Dark Web Index 2022 report. 50 in 2021).

Identity Theft

Identity Theft Accountability DDOS Cybercrime

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

The Last Watchdog

JULY 18, 2023

July 18, 2022 – Around 30,000 websites get hacked every day , with the majority of those cyberattacks due to human error. A new study by HostingAdvice, the premier authority on web hosting, found that 32% of Americans say they’ve gotten hacked from visiting a sketchy website and of those, 53% got a computer virus.

Hacking

Hacking DDOS Small Business Spyware

AdSense fraud campaign relies on 10,890 sites that were infected since September 2022

Security Affairs

FEBRUARY 14, 2023

The threat actors behind a massive AdSense fraud campaign infected 10,890 WordPress sites since September 2022. In November 2022, researchers from security firm Sucuri reported to have tracked a surge in WordPress malware redirecting website visitors to fake Q&A sites via ois[.]is. All these domains can now be found on IP 190[.]115[.]26.9.

Malware

Malware DDOS Cryptocurrency Hacking

Moobot botnet spreads by targeting Cacti and RealTek flaws

Security Affairs

APRIL 3, 2023

FortiGuard Labs researchers observed an ongoing hacking campaign targeting Cacti ( CVE-2022-46169 ) and Realtek ( CVE-2021-35394 ) vulnerabilities to spread ShellBot and Moobot malware. The ShellBot , also known as PerlBot, is a Perl-based DDoS bot that uses IRC protocol for C2 communications.

DDOS

DDOS Malware Hacking Education

Pro-Russia group NoName took down multiple France sites, including the French Senate one

Security Affairs

MAY 5, 2023

The French Senate’s website was taken offline by a DDoS attack launched by the pro-Russian hacker group NoName. The pro-Russia hacker group NoName is claiming responsibility for a DDoS attack that took the website of the French Senate offline.

DDOS

DDOS Cyber Attacks Mobile Internet

Russia-linked Fronton botnet could run disinformation campaigns

Security Affairs

MAY 23, 2022

Fronton is a distributed denial-of-service (DDoS) botnet that was used by Russia-linked threat actors for coordinated disinformation campaigns. In March 2020, the collective of hacktivists called “ Digital Revolution ” claimed to have hacked a subcontractor to the Russian FSB. ru to 0day[.]llc. ” continues the report.

DDOS

DDOS Media Hacking Engineering

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

Besides proprietary tools, they’re leveraging MHDDoS, Blood, Karma DDoS, Hasoki, DDoS Ripper and GoldenEye scripts to generate malicious traffic on Layer 7 which may impact the availability of WEB resources. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Government

Government DDOS Cyber Attacks Hacking

A new Mirai botnet variant targets TP-Link Archer A21

Security Affairs

APRIL 25, 2023

The vulnerability was first reported to ZDI during the Pwn2Own Toronto 2022 event. The Mirai botnet that is behind the attacks observed by ZDI is focused on launching DDoS attacks, it has the capability to target Valve Source Engine (VSE). A remote attacker can trigger the issue to inject commands that should be executed on the device.

DDOS

DDOS Engineering Firmware Architecture

The LEGION collective calls to action to attack the final of the Eurovision song contest

Security Affairs

MAY 14, 2022

The Pro-Russian volunteer movement known as LEGION is calling to launch DDoS attacks against the final of the Eurovision song contest. The LEGION is a Pro-Russian volunteer movement that focuses on DDOS attacks. Task #2: Task #2 make a DDOS attack on the discovered servers and keep them until 07:00 Moscow time.

DDOS

DDOS Hacking Government Cybersecurity

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. The botnet targets multiple architectures, including arm, bsd, x64, and x86.

Malware

Malware DDOS IoT Cybercrime

Ukraine IT Army hit EGAIS portal impacting Russia’s alcohol distribution

Security Affairs

MAY 6, 2022

Ukraine IT Army launched massive DDoS attacks on the EGAIS portal that has a crucial role in Russia’s alcohol distribution. ” reported Vedomosti “Apparently, we are talking about DDoS attacks.” SecurityAffairs – hacking, Ukraine). To nominate, please visit:? Pierluigi Paganini.

DDOS

DDOS Retail Accountability Marketing

Apr 24 – Apr 30 Ukraine – Russia the silent cyber conflict

Security Affairs

MAY 1, 2022

Below is the timeline of the events related to the ongoing invasion that occurred in the previous weeks: April 30 – Pro-Russian group Killnet launched DDoS attacks on Romanian govt sites. A series of DDoS attacks launched by Russian hacktivists are targeting several Romanian government websites. To nominate, please visit:?

DDOS

DDOS Government Hacking Banking

Anonymous: Operation Russia after 100 days of war

Security Affairs

JUNE 4, 2022

pic.twitter.com/nZ8zk7bWV9 — Anonymous TV (@YourAnonTV) June 3, 2022. OpRussia #FreeUkraine pic.twitter.com/5lEUYliGgH — Anonymous TV (@YourAnonTV) June 1, 2022. OpRussia #FreeUkraine pic.twitter.com/5lEUYliGgH — Anonymous TV (@YourAnonTV) June 1, 2022. SecurityAffairs – hacking, Ukraine).

Banking

Banking Government Media Hacking

May 01 – May 07 Ukraine – Russia the silent cyber conflict

Security Affairs

MAY 8, 2022

Ukraine IT Army launched massive DDoS attacks on the EGAIS portal that has a crucial role in Russia’s alcohol distribution. May 04 – Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites. SecurityAffairs – hacking, Russia). To nominate, please visit:? Pierluigi Paganini.

DDOS

DDOS Cyber Attacks Government Hacking

Security Affairs newsletter Round 367 by Pierluigi Paganini

Security Affairs

MAY 29, 2022

Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”). SecurityAffairs – hacking, newsletter). To nominate, please visit:?.

InfoSec

InfoSec Spyware DDOS Firewall

Security Affairs newsletter Round 363 by Pierluigi Paganini

Security Affairs

MAY 1, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.

DDOS

DDOS Surveillance Hacking Ransomware

A week in security (December 12 - 18)

Malwarebytes

DECEMBER 18, 2022

Iranian hacking group uses compromised email accounts to distribute MSP remote access tool. Two zero-days fixed in 2022's last patch Tuesday. Worldwide law enforcement action takes down major DDoS booter services. Last week on Malwarebytes Labs: Indiana sues TikTok, describes it as "Chinese Trojan Horse". Update now! Update now!

DDOS

DDOS Scams Ransomware Accountability

The activity of the Linux XorDdos bot increased by 254% over the last six months

Security Affairs

MAY 20, 2022

XORDDoS , also known as XOR.DDoS , first appeared in the threat landscape in 2014 it is a Linux Botnet that was employed in attacks against gaming and education websites with massive DDoS attacks that reached 150 gigabytes per second of malicious traffic. SecurityAffairs – hacking, domain name system). To nominate, please visit:?

DDOS

DDOS Architecture Education Hacking

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

Security Affairs

MAY 14, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches

Data breaches DDOS Artificial Intelligence Ransomware

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

. “FROZENBARENTS (aka Sandworm), a group attributed to Russian Armed Forces’ Main Directorate of the General Staff (GRU) Unit 74455, continues to focus heavily on the war in Ukraine with campaigns spanning intelligence collection, IO, and leaking hacked data through Telegram.” ” reads the report published by the Google TAG.

Phishing

Phishing Education Accountability Telecommunications

Security Affairs newsletter Round 362 by Pierluigi Paganini

Security Affairs

APRIL 24, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.

Cyber Insurance

Cyber Insurance Spyware Firmware Insurance

Eternity Project: You can pay $260 for a stealer and $490 for a ransomware

Security Affairs

MAY 15, 2022

Researchers at cybersecurity firm Cyble analyzed a Tor website named named ‘Eternity Project’ that offers for sale a broad range of malware, including stealers, miners, ransomware, and DDoS Bots. SecurityAffairs – hacking, malware). To nominate, please visit:? Follow me on Twitter: @securityaffairs and Facebook.

Ransomware

Ransomware DDOS Cybercrime Malware

How the thriving fraud industry within Facebook attacks independent media

Security Affairs

MAY 6, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.

Media

Media DDOS Accountability Hacking

May 08 – May 14 Ukraine – Russia the silent cyber conflict

Security Affairs

MAY 15, 2022

The Pro-Russian volunteer movement known as LEGION is calling to launch DDoS attacks against the final of the Eurovision song contest. Another week has passed and Anonymous has hacked other Russian companies and leaked their data via DDoSecrets. SecurityAffairs – hacking, Ukraine). To nominate, please visit:?

DDOS

DDOS Hacking Government Malware

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Security Affairs

APRIL 30, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Cybercrime

Cybercrime Malware Hacking Accountability

Pro-Russian hacktivists target Italy government websites

Security Affairs

MAY 14, 2022

The Italian police is investigating the attack, while the National Computer Security Incident Response Team (CSIRT) confirmed that the websites were hit with DDoS attacks. The Pro-Russian hacktivists launched a Slow POST DDoS attack, the CSIRT warns that this kind of attack is unusual and for this reason it could be undetected.

Government

Government DDOS Data breaches Media

Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition

Security Affairs

MAY 21, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches

Data breaches Cybercrime Ransomware Passwords

The Art of (Cyber) War

Approachable Cyber Threats

AUGUST 10, 2022

When we think of nation-state hacking most of us have a western skew, immediately think of “the usual suspects”, China, North Korea, and Russia. In most cases State hacking programs utilize both directly affiliated actors (possibly military affiliated) and private “for hire” or sponsored groups not directly affiliated.

DDOS

DDOS Cyber Attacks Government Hacking

The Analyst Prompt #16: Monero’s Hard Fork Enhances Privacy and May Make It More Attractive to Cybercriminals

Security Boulevard

AUGUST 25, 2022

On August 13th, 2022, Monero underwent a hard fork, i.e. a protocol upgrade that introduced several new features to improve user anonymity and performance. [5] Threat Actor Updates: LockBit Accuses Entrust of DDoS Attack; If Proven Would Set a New Precedent. At the time of the reporting, LockBit´s blog mirrors were still inaccessible.

DDOS

DDOS Cryptocurrency Ransomware Technology

CISA adds Ruckus bug and another six flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

MAY 16, 2023

The activity is associated with a known DDoS botnet tracked as AndoryuBot that first appeared in February 2023. The bot supports multiple DDoS attack techniques and uses SOCKS5 proxies for C2 communications.

Wireless

Wireless DDOS Cybersecurity Hacking

Security Affairs newsletter Round 364 by Pierluigi Paganini

Security Affairs

MAY 8, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.

IoT

IoT DNS Antivirus DDOS

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Webinars

Trending Sources

Enemybot, a new DDoS botnet appears in the threat landscape

Webinars

FBI seized 13 domains linked to DDoS-for-hire platforms

Fortinet warns of a spike of the activity linked to AndoryuBot DDoS botnet

A DDoS attack took down Finnish govt sites as Ukraine’s President addresses MPs

Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites

Pro-Russian group Killnet launched DDoS attacks on Romanian govt sites

CloudFlare blocked a record HTTPs DDoS attack peaking at 15 rps

SLP flaw allows DDoS attacks with an amplification factor as high as 2200 times

The largest Russian bank Sberbank hit by a massive DDoS attack

Ongoing DDoS attacks from compromised sites hit Ukraine

Stark Industries Solutions: An Iron Hammer in the Cloud

Let’s give a look at the Dark Web Price Index 2022

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

AdSense fraud campaign relies on 10,890 sites that were infected since September 2022

Moobot botnet spreads by targeting Cacti and RealTek flaws

Pro-Russia group NoName took down multiple France sites, including the French Senate one

Russia-linked Fronton botnet could run disinformation campaigns

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

A new Mirai botnet variant targets TP-Link Archer A21

The LEGION collective calls to action to attack the final of the Eurovision song contest

EnemyBot malware adds new exploits to target CMS servers and Android devices

Ukraine IT Army hit EGAIS portal impacting Russia’s alcohol distribution

Apr 24 – Apr 30 Ukraine – Russia the silent cyber conflict

Anonymous: Operation Russia after 100 days of war

May 01 – May 07 Ukraine – Russia the silent cyber conflict

Security Affairs newsletter Round 367 by Pierluigi Paganini

Security Affairs newsletter Round 363 by Pierluigi Paganini

A week in security (December 12 - 18)

The activity of the Linux XorDdos bot increased by 254% over the last six months

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs newsletter Round 362 by Pierluigi Paganini

Eternity Project: You can pay $260 for a stealer and $490 for a ransomware

How the thriving fraud industry within Facebook attacks independent media

May 08 – May 14 Ukraine – Russia the silent cyber conflict

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Pro-Russian hacktivists target Italy government websites

Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition

The Art of (Cyber) War

The Analyst Prompt #16: Monero’s Hard Fork Enhances Privacy and May Make It More Attractive to Cybercriminals

CISA adds Ruckus bug and another six flaws to its Known Exploited Vulnerabilities catalog

Security Affairs newsletter Round 364 by Pierluigi Paganini

Stay Connected