DDOS, Hacking, Internet and Malware - Cyber Security Informer

DDoS Mitigation Firm Founder Admits to DDoS

Krebs on Security

JANUARY 20, 2020

A Georgia man who co-founded a service designed to protect companies from crippling distributed denial-of-service (DDoS) attacks has pleaded to paying a DDoS-for-hire service to launch attacks against others. Tucker Preston , 22, of Macon, Ga., ” Preston declined to comment for this story.

DDOS

DDOS System Administration Internet Internet

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs

FEBRUARY 8, 2024

Several media reported that three million electric toothbrushes were compromised and recruited into a DDoS botnet. The Swiss newspaper Aargauer Zeitung first published the news of a DDoS attack, carried out on January 30, that involved three million compromised electric toothbrushes. Is it true? What the f is wrong with you people????

DDOS

DDOS IoT Media Internet

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. ” According to Kilmer, AVrecon is the malware that gives SocksEscort its proxies. SocksEscort[.]com

Malware

Malware VPN Internet Internet

PurpleFox malware infected at least 2,000 computers in Ukraine

Security Affairs

FEBRUARY 2, 2024

The Computer Emergency Response Team in Ukraine (CERT-UA) reported that a PurpleFox malware campaign had already infected at least 2,000 computers in the country. Experts defined DirtyMoe as a complex malware that has been designed as a modular system. ” reads the alert published by CERT-UA.

Malware

Malware Internet Internet DDOS

Akamai blocked the largest DDoS attack ever on its European customers

Security Affairs

JULY 28, 2022

This month Akamai blocked the largest distributed denial-of-service (DDoS) attack that hit an organization in Europe. On July 21, 2022, Akamai mitigated the largest DDoS attack that ever hit one of its European customers. SecurityAffairs – hacking, DDoS). Gbps and 659.6 Mpps over 14 hours.” Gbps and 659.6

DDOS

DDOS Internet Internet Hacking

Multiple DDoS botnets were observed targeting Zyxel devices

Security Affairs

JULY 22, 2023

Researchers warn of several DDoS botnets exploiting a critical flaw tracked as CVE-2023-28771 in Zyxel devices. Fortinet FortiGuard Labs researchers warned of multiple DDoS botnets exploiting a vulnerability impacting multiple Zyxel firewalls. Mirai botnets are frequently used to conduct DDoS attacks.”

DDOS

DDOS Firmware VPN Firewall

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. SecurityAffairs – hacking, Enemybot).

DDOS

DDOS Architecture Malware Cybercrime

New Lucifer DDoS botnet targets Windows systems with multiple exploits

Security Affairs

JUNE 26, 2020

A new botnet, tracked as Lucifer, appeared in the threat landscape, it leverages close to a dozen exploits to hack Windows systems. Upon infecting a system the bot turns it into a cryptomining client and could use it to launch distributed denial-of-service (DDoS) attacks. ” reads the report published by the Unit42 team.

DDOS

DDOS Malware Advertising Passwords

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

Security Affairs

SEPTEMBER 9, 2021

The massive DDoS attack that has been targeting the internet giant Yandex was powered b a completely new botnet tracked as M?ris. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks. technique for DDoS attacks.

DDOS

DDOS Internet Internet IoT

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Krebs on Security

SEPTEMBER 10, 2021

On Thursday evening, KrebsOnSecurity was the subject of a rather massive (and mercifully brief) distributed denial-of-service (DDoS) attack. But on Thursday DDoS protection firm Qrator Labs identified the culprit — “Meris” — a new IoT monster that first emerged at the end of June 2021. In its Aug. Image: Qrator.

IoT

IoT DDOS Internet Internet

Mirai Botnet launched the DDoS attack on Minecraft Server Wynncraft

CyberSecurity Insiders

OCTOBER 16, 2022

Mirai malware that is used to take control of millions of devices to launch large-scale network level attacks is back in news for launching a 2.5 From a bitrate standpoint, the latest denial of service attack on Minecraft Servers is the biggest in the internet’s history. Tbps on Minecraft Server Wynncraft.

DDOS

DDOS Threat Detection Threat Reports Internet

M?ris Botnet Breaks DDoS Record

Heimadal Security

SEPTEMBER 10, 2021

For the last month, a new distributed denial-of-service (DDoS) botnet has been attacking the Russian internet company Yandex. ris is the name given to the botnet, which derives its power from tens of thousands of hacked machines, estimated to be the most […]. The attack peaked at an unparalleled rate of 21.8 The post M?ris

DDOS

DDOS Internet Internet Hacking

New NKAbuse malware abuses NKN decentralized P2P network protocol

Security Affairs

DECEMBER 15, 2023

Experts uncovered a new Go-based multi-platform malware, tracked as NKAbuse, which is the first malware abusing NKN technology. Researchers from Kaspersky’s Global Emergency Response Team ( GERT ) and GReAT uncovered a new multiplatform malware dubbed NKAbuse. The protocol enables secure and low-cost data transfer.

Malware

Malware Architecture Technology DDOS

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Security Affairs

AUGUST 20, 2021

Web infrastructure and website security company Cloudflare announced to have mitigated the largest ever volumetric DDoS attack to date. Cloudflare, the web infrastructure and website security company, announced that it has mitigated the largest ever volumetric distributed denial of service (DDoS) attack to date.

DDOS

DDOS Telecommunications Internet Internet

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Security Affairs

NOVEMBER 15, 2021

Cloudflare announced to have mitigated a distributed denial-of-service (DDoS) attack that peaked at almost 2 terabytes per second (Tbps). is an American web infrastructure and website security company that provides content delivery network and DDoS mitigation services. SecurityAffairs – hacking, DDoS). Cloudflare, Inc.

DDOS

DDOS DNS IoT Internet

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Security Affairs

OCTOBER 11, 2023

A Mirai-based DDoS botnet tracked as IZ1H9 has added thirteen new exploits to target routers from different vendors, including D-Link, Zyxel, and TP-Link. The botnet supports multiple DDoS attacks, including UDP, HTTP Flood, UDP Plain, and TCP SYN. ” reads the analysis published by Fortinet. ” concludes the analysis.

DDOS

DDOS Wireless Architecture IoT

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Security Affairs

MARCH 10, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army , threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” Pierluigi Paganini.

DDOS

DDOS Digital transformation Malware Advertising

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

Security Affairs

AUGUST 27, 2020

New Zealand’s stock exchange (NZX) confirmed it was hit by a massive distributed denial of service (DDoS) attack from abroad that knocked it offline two days. The DDoS attack impacted traders, anyway financial or personal information of the users was not accessed. SecurityAffairs – hacking, New Zealand stock exchange).

DDOS

DDOS Marketing Advertising Internet

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Security Affairs

FEBRUARY 3, 2020

L inear eMerge E3 smart building access systems designed by N ortek Security & Control (NSC) are affected by a severe vulnerability (CVE-2019-7256) that has yet to be fixed and attackers are actively scanning the internet for vulnerable devices. Passwords can be found in p roduct documentation and compiled lists available on the Internet.”

DDOS

DDOS Hacking Internet Internet

New Go-based Redigo malware targets Redis servers

Security Affairs

DECEMBER 1, 2022

Redigo is a new Go-based malware employed in attacks against Redis servers affected by the CVE-2022-0543 vulnerability. Researchers from security firm AquaSec discovered a new Go-based malware that is used in a campaign targeting Redis servers. SecurityAffairs – hacking, Redis). ” reads the analysis published by AquaSec.

Malware

Malware DDOS Architecture Cryptocurrency

Experts warn of surge in DDoS attacks targeting education institutions

Security Affairs

SEPTEMBER 15, 2020

Experts warn of a surge in the DDoS attacks against education institutions and the academic industry across the world. The DDoS attacks are causing severe issues to the targeted education institutions such as temporarily takedown of the network and online classes. SecurityAffairs – hacking, education institutions).

Education

Education DDOS Advertising Cyber Attacks

Updated Kmsdx botnet targets IoT devices

Security Affairs

AUGUST 28, 2023

Researchers spotted an updated version of the KmsdBot botnet that is now targeting Internet of Things (IoT) devices. The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices.

IoT

IoT DDOS Architecture Internet

Over 80,000 Hikvision cameras can be easily hacked

Security Affairs

AUGUST 23, 2022

Upon compromising the IP camera, an attacker can also use the hacked device to access internal networks posing a risk to the infrastructure that use the devices. This means that it is quite easy for threat actors to scan the Internet for vulnerable devices and compromise them. SecurityAffairs – hacking, Hikvision).

Hacking

Hacking Firmware Internet Internet

Kaiji, a new Linux malware targets IoT devices in the wild

Security Affairs

MAY 5, 2020

Security researchers spotted a new piece of DDoS bot dubbed Kaiji that is targeting IoT devices via SSH brute-force attacks. Last week, the popular security researcher MalwareMustDie and the experts at Intezer Labs spotted a new piece of malware dubbed Kaiji, that is targeting IoT devices via SSH brute-force attacks. versionday[.]xyz

IoT

IoT Malware DDOS Advertising

Security Affairs newsletter Round 397

Security Affairs

DECEMBER 11, 2022

Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 SecurityAffairs – hacking, newsletter ). Pierluigi Paganini.

Firewall

Firewall Banking DDOS Hacking

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

Security Affairs

JUNE 16, 2020

Wireless carrier T-Mobile suffered a major outage in the United States, that impacted service at other carriers, due to a “massive” DDoS attack. Wireless carrier T-Mobile suffered a massive DDoS attack that caused a major outage in the United States that impacted service at other carriers due to a “massive” DDoS attack.

DDOS

DDOS Mobile Wireless Advertising

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. Experts pointed out that the malware is being actively developed.

Malware

Malware DDOS IoT Cybercrime

Law enforcement take down 15 DDoS-for-Hire services

Security Affairs

DECEMBER 22, 2018

The Department of Justice (DoJ) announced that the FBI seized 15 domains associated with DDoS-for-hire services. The FBI has seized 15 domains associated with DDoS-for-hire services (aka booters or stressers ) that were used by their customers to launch powerful DDoS attacks. Authorities Take Down 15 DDoS-for-Hire Websites.

DDOS

DDOS Advertising Internet Internet

What Is DNS Security? Everything You Need to Know

eSecurity Planet

NOVEMBER 10, 2023

Since a majority of business IT traffic now accesses or passes through the internet, DNS plays an increasingly important — and vulnerable — role. DNS security protects the domain name system (DNS) from attackers seeking to reroute traffic to malicious sites.

DNS

DNS DDOS Encryption Authentication

New Tsunami botnet targets Linux SSH servers

Security Affairs

JUNE 20, 2023

Researchers warn of an ongoing Tsunami DDoS botnet campaign targeting inadequately protected Linux SSH servers. Researchers from AhnLab Security Emergency response Center (ASEC) have uncovered an ongoing hacking campaign, aimed at poorly protected Linux SSH servers, to install the Tsunami DDoS botnet (aka Kaiten).

DDOS

DDOS Malware Passwords Accountability

Cyberium malware-hosting domain employed in multiple Mirai variants campaigns

Security Affairs

JUNE 15, 2021

A new variant of the Mirai botnet, tracked as Moobot, was spotted scanning the Internet for vulnerable Tenda routers. Researchers from AT&T Alien Lab have spotted a new variant of the Mirai botnet, tracked asu Moobot, which was scanning the Internet for the CVE-2020-10987 remote code-execution (RCE) issue in Tenda routers.

Malware

Malware Internet Internet DDOS

Facebook/Insta FAIL — ‘Anonymous Sudan’ has a Super Tuesday: ‘We Did It.’

Security Boulevard

MARCH 6, 2024

Shooper Choosday: Was yesterday’s Meta outage outrage caused by a Russian DDoS? The post Facebook/Insta FAIL — ‘Anonymous Sudan’ has a Super Tuesday: ‘We Did It.’ appeared first on Security Boulevard.

DDOS

DDOS Social Engineering Authentication Accountability

Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition

Security Affairs

JUNE 17, 2023

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9 Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9

Data breaches

Data breaches DDOS Backups Firewall

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack.

Scams

Scams DDOS Cryptocurrency Accountability

UK Ad Campaign Seeks to Deter Cybercrime

Krebs on Security

MAY 28, 2020

The United Kingdom’s anti-cybercrime agency is running online ads aimed at young people who search the Web for services that enable computer crimes, specifically trojan horse programs and DDoS-for-hire services. For example, search in Google for the terms “booter” or “stresser” from a U.K.

Cybercrime

Cybercrime DDOS Advertising Hacking

MCCrash botnet targets private Minecraft servers, Microsoft warns

Security Affairs

DECEMBER 16, 2022

Microsoft announced that a botnet dubbed MCCrash is launching distributed denial-of-service (DDoS) attacks against private Minecraft servers. Microsoft spotted a cross-platform botnet, tracked as MCCrash, which has been designed to launch distributed denial-of-service (DDoS) attacks against private Minecraft servers. ark—event[.]net

DDOS

DDOS IoT Malware Internet

Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

Security Affairs

JULY 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

DDOS

DDOS Hacking Spyware Surveillance

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Security Affairs

OCTOBER 3, 2019

Dutch police seized a bulletproof hosting service in a major takedown, the infrastructure was used by tens of IoT botnets involved in DDoS attacks. The servers were hosted at an unnamed data center in Amsterdam, it was used by tens of IoT botnets involved in DDoS attacks worldwide. over a period of one year. Pierluigi Paganini.

DDOS

DDOS IoT Cybercrime Advertising

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

The responsibility of the new division includes “cyber sabotage”, disruption of Internet resources, data theft and financial intelligence focused on NATO, their members and allies. SecurityAffairs – hacking, Cyber Spetsnaz). The actor shared a list of NATO resources and a comprehensive Excel file. Pierluigi Paganini.

Government

Government DDOS Cyber Attacks Hacking

Moobot botnet spreads by exploiting CVE-2021-36260 flaw in Hikvision products

Security Affairs

DECEMBER 8, 2021

The Moobot was first documented by Palo Alto Unit 42 researchers in February 2021, the recent attacks demonstrated that its authors are enhancing their malware. Upon compromising the IP camera, an attacker can also use the hacked device to access internal networks posing a risk to the infrastructure that uses the devices.

Firmware

Firmware DDOS Malware IoT

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Security Affairs

DECEMBER 17, 2023

In November, Akamai warned of a new Mirai -based DDoS botnet, named InfectedSlurs , actively exploiting two zero-day vulnerabilities to infect routers and video recorder (NVR) devices. “Legacy systems are fertile ground for new vulnerabilities to be discovered and exploited in order to propagate malware.”

Firmware

Firmware Wireless DDOS IoT

Router security in 2021

SecureList

JUNE 8, 2022

A router is a gateway from the internet to a home or office — despite being conceived quite the opposite. Routers are forever being hacked and infected, and used to infiltrate local networks. Moreover, most of these routers had the name HACKED-ROUTER-HELP-SOS-DEFAULT-PASSWORD, indicating they had already been compromised.

DDOS

DDOS Passwords IoT Firmware

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

As detailed in my 2014 book, Spam Nation , Spamdot was home to crooks controlling some of the world’s nastiest botnets, global malware contagions that went by exotic names like Rustock , Cutwail , Mega-D , Festi , Waledac , and Grum. And there were many good reasons to support this conclusion. w s, icamis[.]ru ru , and icamis[.]biz.

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

DDoS Mitigation Firm Founder Admits to DDoS

Unraveling the truth behind the DDoS attack from electric toothbrushes

Trending Sources

Who and What is Behind the Malware Proxy Service SocksEscort?

PurpleFox malware infected at least 2,000 computers in Ukraine

Akamai blocked the largest DDoS attack ever on its European customers

Multiple DDoS botnets were observed targeting Zyxel devices

Enemybot, a new DDoS botnet appears in the threat landscape

New Lucifer DDoS botnet targets Windows systems with multiple exploits

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Mirai Botnet launched the DDoS attack on Minecraft Server Wynncraft

M?ris Botnet Breaks DDoS Record

New NKAbuse malware abuses NKN decentralized P2P network protocol

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Developer of DDoS Mirai based botnets sentenced to prison

Crooks target Ukraine’s IT Army with a tainted DDoS tool

New Zealand stock exchange (NZX) halted 2 days by DDoS attack

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

New Go-based Redigo malware targets Redis servers

Experts warn of surge in DDoS attacks targeting education institutions

Updated Kmsdx botnet targets IoT devices

Over 80,000 Hikvision cameras can be easily hacked

Kaiji, a new Linux malware targets IoT devices in the wild

Security Affairs newsletter Round 397

T-Mobile suffered a major outage in the US allegedly caused by a massive DDoS attack

EnemyBot malware adds new exploits to target CMS servers and Android devices

Law enforcement take down 15 DDoS-for-Hire services

What Is DNS Security? Everything You Need to Know

New Tsunami botnet targets Linux SSH servers

Cyberium malware-hosting domain employed in multiple Mirai variants campaigns

Facebook/Insta FAIL — ‘Anonymous Sudan’ has a Super Tuesday: ‘We Did It.’

Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition

Interview With a Crypto Scam Investment Spammer

UK Ad Campaign Seeks to Deter Cybercrime

MCCrash botnet targets private Minecraft servers, Microsoft warns

Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

Dutch police shut down bulletproof service hosting tens of DDoS botnets

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Moobot botnet spreads by exploiting CVE-2021-36260 flaw in Hikvision products

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Router security in 2021

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Stay Connected