Advertising, DDOS, Firmware and Information Security

Multiple DDoS botnets were observed targeting Zyxel devices

Security Affairs

JULY 22, 2023

Researchers warn of several DDoS botnets exploiting a critical flaw tracked as CVE-2023-28771 in Zyxel devices. Fortinet FortiGuard Labs researchers warned of multiple DDoS botnets exploiting a vulnerability impacting multiple Zyxel firewalls. through 4.73, VPN series firmware versions 4.60 through 5.35.

DDOS

DDOS Firmware VPN Firewall

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Since then, the same spammers have used this method to advertise more than 100 different crypto investment-themed domains. Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack. Quotpw/Ahick/Edgard/ципа advertising his coding services in this Google-translated forum posting.

Scams

Scams DDOS Cryptocurrency Accountability

Moobot botnet spreads by exploiting CVE-2021-36260 flaw in Hikvision products

Security Affairs

DECEMBER 8, 2021

The vulnerability is an unauthenticated Remote Code Execution (RCE) vulnerability in Hikvision IP camera/NVR firmware, it was discovered by a security researcher that goes online with the moniker “Watchful IP.”. The expert pointed out that every firmware developed since 2016 has been tested and found to be vulnerable.

Firmware

Firmware DDOS Malware IoT

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. According to the experts, Tenda routers running a firmware version between AC9 to AC18 are vulnerable to the attack.

IoT

IoT Firmware DNS Advertising

Pink Botnet infected over 1.6 Million Devices, it is one of the largest botnet ever seen

Security Affairs

NOVEMBER 1, 2021

The botnet was created to launch DDoS attacks and to insert advertisements in the legitimate HTTP traffic of the victims, most of which are in China (96%). This architecture was implemented to make the botnet resilient to takedowns by law enforcement and security firms with the support of the vendors of the infected devices.

Architecture

Architecture DDOS Advertising DNS

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

AvosLocker operators already advertised in the past a Linux variant, dubbed AvosLinux, of their malware claiming it was able to support Linux and ESXi servers. In some cases, the gang also threatened and conducted distributed denial-of-service (DDoS) attacks during negotiations. Focus on cyber security awareness and training.

Ransomware

Ransomware DDOS Passwords Backups

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

Recently Check Point researchers warned of a surge in the DDoS attacks against education institutions and the academic industry across the world. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Education

Education Ransomware Antivirus Backups

Mozi Botnet is responsible for most of the IoT Traffic

Security Affairs

SEPTEMBER 20, 2020

The Mozi botnet was spotted by security experts from 360 Netlab, at the time of its discovered it was actively targeting Netgear, D-Link, and Huawei routers by probing for weak Telnet passwords to compromise them. According to the researchers, in the last months of 2019, the botnet was mainly involved in DDoS attacks.

IoT

IoT DDOS Architecture Passwords

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. ” Frustratingly, Lumen was not able to determine how the SOHO devices were being infected with AVrecon.

Malware

Malware VPN Internet Internet

Million of Telestar Digital GmbH IoT radio devices can be remotely hacked

Security Affairs

SEPTEMBER 10, 2019

The hardware of the terminals is equipped with Shenzen technology, while the firmware is based on BusyBox Linux Debian. . According to Kunz, more than one million devices are potentially at risk, an attacker can trigger the flaws to build a huge botnet that could be used to launch powerful DDoS attacks. ” continues the experts.

IoT

IoT Hacking Firmware Advertising

Thousands of Xiaomi FURRYTAIL pet feeders exposed to hack

Security Affairs

OCTOBER 30, 2019

A Russian security researcher accidentally discovered API and firmware issues that allowed her to take over all Xiaomi FurryTail pet feeders. The Russian security researcher Anna Prosvetova, from Saint Petersburg, has accidentally discovered API and firmware issues that allowed her to take over all Xiaomi FurryTail pet feeders.

Hacking

Hacking Firmware Advertising DDOS

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

Nobody told them that their coffee machine could be hacked into or that their camera could be used to launch a DDoS attack. Even if a local network is completely secured and all IoT devices on it have firmware and software updated to the last version, a shadow IoT device can wreak havoc. Shadow IoT Devices. Pierluigi Paganini.

IoT

IoT Cybersecurity Manufacturing Internet

Mukashi, the new Mirai variant that targets Zyxel NAS

Security Affairs

MARCH 21, 2020

. “ Mukashi brute forces the logins using different combinations of default credentials, while informing its command and control (C2) server of the successful login attempts. Multiple, if not all, Zyxel NAS products running firmware versions up to 5.21 The bot supports various commands, like Mirai, such as launching DDoS attacks.

DDOS

DDOS Authentication Advertising Firmware

What is Incident Response? Ultimate Guide + Templates

eSecurity Planet

JULY 25, 2023

Botnets : Networks of compromised computers are controlled by a central attacker and used for various malicious activities such as launching coordinated distributed denial of service ( DDoS ) attacks, providing a staging point for attacks on other victims, or distributing spam.

Software

Software Data breaches DDOS Ransomware

Cyber Security Informer

Multiple DDoS botnets were observed targeting Zyxel devices

Interview With a Crypto Scam Investment Spammer

Trending Sources

Moobot botnet spreads by exploiting CVE-2021-36260 flaw in Hikvision products

New Ttint IoT botnet exploits two zero-days in Tenda routers

Pink Botnet infected over 1.6 Million Devices, it is one of the largest botnet ever seen

Avoslocker ransomware gang targets US critical infrastructure

NCSC warns of a surge in ransomware attacks on education institutions

Mozi Botnet is responsible for most of the IoT Traffic

Who and What is Behind the Malware Proxy Service SocksEscort?

Million of Telestar Digital GmbH IoT radio devices can be remotely hacked

Thousands of Xiaomi FURRYTAIL pet feeders exposed to hack

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Mukashi, the new Mirai variant that targets Zyxel NAS

What is Incident Response? Ultimate Guide + Templates

Stay Connected