Blog, DDOS, Firmware and Malware - Cyber Security Informer

DDoS attacks in Q4 2020

SecureList

FEBRUARY 16, 2021

After the attacks came to light, the manufacturer promptly released a firmware update for configuring verification of incoming requests. In December, Canada’s Laurentian University reported a DDoS attack. Educational institutions are recommended to use anti-DDoS solutions and strong firewall settings, and partner up with ISPs.

DDOS

DDOS Cryptocurrency Marketing Internet

Securing Public Sector Against IoT Malware in 2024

Security Boulevard

JANUARY 11, 2024

This became abundantly clear last year as malware attacks on IoT devices emerged as a fast-rising threat. In this blog post, we’ll explore the potential impact of IoT malware on the public sector — a story of innovation, risk, and the need for resilience. and East Asia.

IoT

IoT Malware Education Government

A new Mirai botnet variant targets TP-Link Archer A21

Security Affairs

APRIL 25, 2023

In March, TP-Link released a firmware update to address multiple issues, including this vulnerability. The Mirai botnet that is behind the attacks observed by ZDI is focused on launching DDoS attacks, it has the capability to target Valve Source Engine (VSE). ” continues the report.

DDOS

DDOS Engineering Firmware Architecture

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

CyberSecurity Insiders

NOVEMBER 11, 2021

AT&T Alien Labs™ has found new malware written in the open source programming language Golang. The malware creates a backdoor and waits to either receive a target to attack from a remote operator through port 19412 or from another related module running on the same machine. VirusTotal scanning results of BotenaGo malware.

Malware

Malware IoT Firmware Authentication

Mirai code re-use in Gafgyt

Security Affairs

APRIL 16, 2021

Uptycs’ threat research team recently detected several variants of the Linux-based botnet malware family, “ Gafgyt ,”some of them re-used Mirai code. . In this blog, we’ll take a look at some of the re-used Mirai modules , their functionality, and the Uptycs EDR detection capabilities of Gafgyt. HTTP flooding module.

Malware

Malware DDOS IoT Firmware

Realtek-based routers, smart devices are being gobbled up by a voracious botnet

Malwarebytes

AUGUST 24, 2021

A few weeks ago we blogged about a vulnerability in home routers that was weaponized by the Mirai botnet just two days after disclosure. Mirai hoovers up vulnerable Internet of Things (IoT) devices and adds them to its network of zombie devices, which can then be used to launch huge Distributed Denial of Service (DDoS) attacks.

Firmware

Firmware IoT Internet Internet

Attacks Escalating Against Linux-Based IoT Devices

eSecurity Planet

JANUARY 20, 2022

Incidents of malware targeting Linux-based Internet of Things (IoT) devices jumped by more than a third in 2021, with three malware families the primary drivers behind the increase. There was a 10-fold increase in the number of samples of Mozi found in the wild, Mihai Maganu, a threat researcher at CrowdStrike, wrote in a blog post.

IoT

IoT DDOS Malware Internet

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

Security Affairs

MAY 14, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches

Data breaches DDOS Artificial Intelligence Ransomware

APT trends report Q2 2022

SecureList

JULY 28, 2022

On January 24, a hash for sophisticated Solaris SPARC malware was posted on Twitter. In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). The most remarkable findings.

Malware

Malware Firmware Phishing Cryptocurrency

Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition

Security Affairs

MAY 21, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches

Data breaches Cybercrime Ransomware Passwords

IT threat evolution Q1 2022

SecureList

MAY 27, 2022

MoonBounce: the dark side of UEFI firmware. Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). Subsequently, DDoS attacks hit some government websites. Targeted attacks. Roaming Mantis reaches Europe.

Phishing

Phishing Spyware Firmware Malware

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Security Affairs

MAY 19, 2020

“There is no evidence to support any other firmware versions are vulnerable at this point in time and these findings have been shared with Symantec.” The botnet borrows the code from Tsunami and Gafgyt botnets, it expanded the list of targeted devices and added new distributed denial of service (DDoS) capabilities.

IoT

IoT DDOS Authentication Advertising

Security Affairs newsletter Round 362 by Pierluigi Paganini

Security Affairs

APRIL 24, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice. Pierluigi Paganini.

Cyber Insurance

Cyber Insurance Spyware Firmware Insurance

Attackers Exploit Flaw that Could Impact Millions of Routers, IoT Devices

eSecurity Planet

AUGUST 10, 2021

Cybercriminals using an IP address in China are trying to exploit a vulnerability disclosed earlier this month to deploy a variant of the Mirai malware on network routers affected by the vulnerability, according to researchers with Juniper Threat Labs. The attackers apparently were trying to deploy a Mirai variant on affected devices.

IoT

IoT DDOS Internet Internet

APT trends report Q1 2022

SecureList

APRIL 27, 2022

Disclaimer: when referring to APT groups as Russian-speaking, Chinese-speaking or other-“speaking” languages, we refer to various artefacts used by the groups (such as malware debugging strings, comments found in scripts, etc.) Subsequently, DDoS attacks hit several government websites.

Malware

Malware Firmware Government Phishing

Cyber Security Roundup for March 2021

Security Boulevard

FEBRUARY 28, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, February 2021. I wrote a blog post about my concerns given Linux is embedded everywhere, yet many of these systems are rarely, and even never updated with security updates.

Energy and Utilities

Energy and Utilities Ransomware DDOS Accountability

Naming & Shaming Web Polluters: Xiongmai

Krebs on Security

OCTOBER 9, 2018

“Although Xiongmai had seven months notice, they have not fixed any of the issues,” the researchers wrote in a blog post published today. The admin account can be used to do anything to the device, such as changing its settings or uploading software — including malware like Mirai. no password).

Computers and Electronics

Computers and Electronics IoT Passwords Internet

Cyber Threats to the FIFA World Cup Qatar 2022

Digital Shadows

NOVEMBER 10, 2022

Stolen credentials can be obtained in a myriad of ways, including social engineering and malware deployment. As you can see in the example below, during our research we identified multiple advertisements of raw logs that were stolen using the “Redline” malware.

Cyber threats

Cyber threats Media Social Engineering Mobile

Cyber Security Informer

DDoS attacks in Q4 2020

Securing Public Sector Against IoT Malware in 2024

Webinars

Trending Sources

A new Mirai botnet variant targets TP-Link Archer A21

Webinars

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

Mirai code re-use in Gafgyt

Realtek-based routers, smart devices are being gobbled up by a voracious botnet

Attacks Escalating Against Linux-Based IoT Devices

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

APT trends report Q2 2022

Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition

IT threat evolution Q1 2022

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Security Affairs newsletter Round 362 by Pierluigi Paganini

Attackers Exploit Flaw that Could Impact Millions of Routers, IoT Devices

APT trends report Q1 2022

Cyber Security Roundup for March 2021

Naming & Shaming Web Polluters: Xiongmai

Cyber Threats to the FIFA World Cup Qatar 2022

Stay Connected