Security Affairs

MAY 20, 2025

The company offers cellular service, along with 5G development, AI services, IoT solutions, cloud computing, and smart city infrastructure. In April, SK Telecom reported that threat actors gained access to USIM-related information for customers following a malware attack. SKT was instructed to notify all 25.64

Malware 106

Malware Mobile Data breaches Wireless 106

Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime 143

Cybercrime Small Business Data breaches Mobile 143

Security Affairs

JUNE 9, 2025

The malware also includes anti-VM and anti-emulation checks by scanning running processes for signs of VMware or QEMU. The malware also verifies its execution path against a list of allowed directories to avoid detection. This Mirai variant uses a simple RC4 algorithm to decrypt strings and uses XOR to obfuscate the key.

IoT 137

IoT Firmware Malware Architecture 137

Krebs on Security

JANUARY 24, 2023

Denis Emelyantsev , a 36-year-old Russian man accused of running a massive botnet called RSOCKS that stitched malware into millions of devices worldwide, pleaded guilty to two counts of computer crime violations in a California courtroom this week. A copy of the passport for Denis Emelyantsev, a.k.a.

Cybercrime 297

Cybercrime Advertising IoT Malware 297

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. ” According to Kilmer, AVrecon is the malware that gives SocksEscort its proxies.

Malware 244

Malware VPN Internet Internet 244

Penetration Testing

MAY 12, 2025

Department of Justice and the Dutch National Police, The post Shadowy IoT Army: Decades-Old Proxy Botnet Exposed and Crippled appeared first on Daily CyberSecurity. Lumen Technologies Black Lotus Labs, in collaboration with the U.S.

IoT 70

IoT Technology Cybersecurity Cybercrime 70

Security Affairs

JULY 29, 2019

According to experts at Sonicwall, scanning of random ports and the diffusion of encrypted malware are characterizing the threat landscape. In 2018, global malware volume recorded by SonicWall hit a record-breaking 10.52 Most of the attacks targeted non-standard ports and experts observed a spike in the number of encrypted malware.

IoT 110

IoT Encryption Malware Advertising 110

Security Affairs

MARCH 2, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware 63

Malware Architecture IoT Cryptocurrency 63

Security Affairs

DECEMBER 17, 2024

The FBI warned of a fresh wave of HiatusRAT malware attacks targeting internet-facing Chinese-branded web cameras and DVRs. The Federal Bureau of Investigation (FBI) released a Private Industry Notification (PIN) to warn of HiatusRAT malware campaigns targeting Chinese-branded web cameras and DVRs. ” reads the PIN report.

Architecture 108

Architecture Internet Internet Malware 108

Krebs on Security

FEBRUARY 24, 2020

The patch comes 12 days after KrebsOnSecurity alerted the company that precise instructions for exploiting the vulnerability were being sold for $20,000 in the cybercrime underground. 500mhz’s profile on one cybercrime forum states that he is constantly buying, selling and trading various 0day vulnerabilities. EMOTET GOES IOT?

IoT 302

IoT Cybercrime Ransomware Firewall 302

Security Affairs

NOVEMBER 11, 2021

Researchers at AT&T discovered a new BotenaGo botnet that is using thirty three exploits to target millions of routers and IoT devices. BotenaGo is a new botnet discovered by researchers at AT&T that leverages thirty three exploits to target millions of routers and IoT devices. ” reads the analysis published by AT&T.

IoT 140

IoT Firmware Malware Wireless 140

Security Affairs

DECEMBER 4, 2023

Cybersecurity researchers discovered a new variant of the P2PInfect botnet that targets routers and IoT devices. Researchers at Cado Security Labs discovered a new variant of the P2Pinfect botnet that targets routers, IoT devices, and other embedded devices. ” reads the report published by Cado Security.

IoT 127

IoT Architecture Malware Hacking 127

Security Affairs

SEPTEMBER 22, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware 125

Malware IoT Healthcare Cryptocurrency 125

Security Affairs

SEPTEMBER 29, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware 127

Malware Social Engineering IoT Scams 127

Security Affairs

JANUARY 21, 2025

Researchers found over 100 servers distributing Mirai malware and communicating with compromised IPs, indicating the campaign is ongoing. “Mirai malware, here dubbed as Murdoc Botnet, is a prominent malware family for *nix systems. Most of the infected systems are in Malaysia, Thailand, Mexico, and Indonesia.

IoT 82

IoT Malware Hacking Cybercrime 82

Security Affairs

JUNE 10, 2025

” In March 2025, attackers exploited CVE-2025-24016 in Wazuh servers using a shell script to deploy the first variant of Mirai spotted by Akamai, mainly LZRD, across IoT devices. Like the first variant, it targets multiple IoT architectures. The malware communicates with 104.168.101[.]27 org and galaxias[.]cc.

Architecture 103

Architecture IoT Threat Detection Malware 103

Security Affairs

SEPTEMBER 7, 2022

A new Linux malware dubbed Shikitega leverages a multi-stage infection chain to target endpoints and IoT devices. Researchers from AT&T Alien Labs discovered a new piece of stealthy Linux malware, dubbed Shikitega, that targets endpoints and IoT devices. ” reads the analysis published by AT&T Alien Labs.

Malware 138

Malware IoT Cryptocurrency Engineering 138

Security Affairs

AUGUST 28, 2023

Researchers spotted an updated version of the KmsdBot botnet that is now targeting Internet of Things (IoT) devices. The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices.

IoT 98

IoT DDOS Architecture Internet 98

Security Affairs

SEPTEMBER 4, 2019

Kenneth Currin Schuchman (21) from Vancouver, Washington pleaded guilty to creating and operating multiple DDoS IoT botnet , including Satori. Kenneth Currin Schuchman (21) from Vancouver, Washington, aka Nexus Zeta, pleaded guilty to creating and operating multiple DDoS IoT botnets. SecurityAffairs – Satori, cybercrime).

IoT 106

IoT DDOS Internet Internet 106

Security Affairs

DECEMBER 26, 2024

In November 2024, the Akamai Security Intelligence Research Team (SIRT) observed increased activity targeting the URI /cgi-bin/cgi_main.cgi , linked to a Mirai-based malware campaign exploiting an unassigned RCE vulnerability in DVR devices, including DigiEver DS-2105 Pro. ” reads the analysis published by Akamai. in newer ones.

Manufacturing 89

Manufacturing Malware Firmware IoT 89

Security Affairs

DECEMBER 21, 2024

” Recently, The Federal Office for Information Security (BSI) announced it had blocked communication between the 30,000 devices infected with the BadBox malware and the C2. Sinkholing isolates the malware and prevents it from executing commands or stealing data. ” concludes the report.

Firmware 142

Firmware Malware Internet Internet 142

Security Affairs

MAY 16, 2025

” The malware hides its GUI to evade detection and ensures persistence by adding itself to the Windows startup registry. The malware bypasses detection using Base64 encoding, dynamic URLs, and simulates human behavior. “DDoS Botnet families tend to congregate on Linux and IoT platforms. ” continues the report.

DDOS 111

DDOS Education IoT Malware 111

Security Affairs

MARCH 16, 2025

CISA adds Advantive VeraCore and Ivanti EPM flaws to its Known Exploited Vulnerabilities catalog Cybersecurity Challenges in Cross-Border Data Transfers and Regulatory Compliance Strategies Elon Musk blames a massive cyberattack for the X outages Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577 RansomHouse gang claims the hack of (..)

Spyware 73

Spyware Cybercrime Ransomware IoT 73

Security Affairs

SEPTEMBER 29, 2018

Avast spotted a new IoT botnet, tracked as Torii, that appears much more sophisticated and stealth of the numerous Mirai variants previously analyzed. Security researchers spotted a new IoT botnet, tracked as Torii, that appears much more sophisticated and stealth of the numerous Mirai variants previously analyzed. Pierluigi Paganini.

IoT 110

IoT Architecture Advertising DDOS 110

Krebs on Security

DECEMBER 5, 2022

The defendants, who initially pursued a strategy of counter suing Google for interfering in their sprawling cybercrime business, later brazenly offered to dismantle the botnet in exchange for payment from Google. The judge in the case was not amused, found for the plaintiff, and ordered the defendants and their U.S.

Cybercrime 308

Cybercrime Malware Internet Internet 308

Hacker's King

DECEMBER 24, 2024

AI-powered malware and phishing schemes can adapt to defenses in real time, making them harder to detect and counter. Growth of IoT Security Solutions With billions of Internet of Things (IoT) devices connecting to networks worldwide, IoT security will be a top priority.

Cybersecurity 59

Cybersecurity Cyber Insurance IoT Insurance 59

Security Affairs

JUNE 15, 2025

CISA adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog Exposed eyes: 40,000 security cameras vulnerable to remote hacking Operation Secure: INTERPOL dismantles 20,000+ malicious IPs in major cybercrime crackdown Over 80,000 servers hit as Roundcube RCE bug gets rapidly exploited A flaw could allow recovery of the phone number (..)

Spyware 61

Spyware Data breaches Cybercrime Hacking 61

Security Affairs

MAY 30, 2022

The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. Experts pointed out that the malware is being actively developed. The Enemybot botnet employs several methods to spread and targets other IoT devices. Upon installing the threat, the bot drops a file in /tmp/.pwned

Malware 145

Malware DDOS IoT Cybercrime 145

Security Affairs

MAY 4, 2025

CISA adds SonicWall SMA100 and Apache HTTP Server flaws to its Known Exploited Vulnerabilities catalog Pro-Russia hacktivist group NoName057(16) is targeting Dutch organizations FBI shared a list of phishing domains associated with the LabHost PhaaS platform Canadian electric utility Nova Scotia Power and parent company Emera suffered a cyberattack (..)

Cybercrime 72

Cybercrime Cyber Attacks Malware Phishing 72

Security Affairs

MARCH 12, 2025

“The botnet exploits this vulnerability by injecting a payload that downloads and executes a cleartext shell dropper named dropbpb.sh, responsible for downloading the malware binaries and executing them on the compromised device.” 70) via HTTP on port 81. It processes encrypted data over a RAW socket, limiting further analysis.

IoT 73

IoT Malware Encryption DDOS 73

Security Affairs

NOVEMBER 5, 2018

The malware was distributed by a threat group called Outlaw, it was able to target Linux and Android devices, and also Windows systems. “The group distributes the bot by exploiting a common command injection vulnerability on internet of things (IoT) devices and Linux servers. . ” reads the analysis published by TrendMicro.

IoT 111

IoT Advertising DDOS Malware 111

Security Affairs

JULY 11, 2024

Multiple threat actors exploit a recently disclosed security PHP flaw CVE-2024-4577 to deliver multiple malware families. The botnet shell script downloads an ELF file named “pty3” from a different IP address, likely a sample of Muhstik malware. ” reported Akamai.

Malware 139

Malware DDOS Internet Internet 139

SecureWorld News

APRIL 11, 2024

The Raspberry Robin malware, a heavily obfuscated Windows worm first identified in late 2021, has become one of the most prevalent threats facing enterprises today. Jason Soroko, Senior Vice President of Product at Sectigo, discussed the sophistication of this malware.

Malware 111

Malware IoT Ransomware Manufacturing 111

Security Affairs

DECEMBER 29, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware 59

Spyware IoT Malware Cybercrime 59

Security Affairs

JUNE 22, 2023

Since March 2023, researchers at Palo Alto Networks Unit 42 have observed a new variant of the Mirai botnet targeting multiple vulnerabilities in popular IoT devices. The malware also contains a function that ensures only one instance of this malware runs on the same device. ” reads the report published by Unit42.

IoT 98

IoT Malware Encryption DDOS 98

Security Affairs

JULY 23, 2020

North Korea-linked Lazarus APT Group has used a new multi-platform malware framework, dubbed MATA, to target entities worldwide. The MATA malware framework could target Windows, Linux, and macOS operating systems. The malware framework implements a wide range of features that allow attackers to fully control the infected systems.

Malware 125

Malware Ransomware Advertising Encryption 125

Security Affairs

MARCH 8, 2025

TB of data allegedly stolen from Tata Technologies New Eleven11bot botnet infected +86K IoT devices Polish Space Agency POLSA disconnected its network following a cyberattack U.S.

Data breaches 68

Data breaches Hacking Cybercrime Artificial Intelligence 68