HackDig : Dig high-quality web security articles

DirtyMoe botnet infected 100,000+ Windows systems in H1 2021

DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. Researchers from Avast are warning of the rapid growth of the DirtyMoe botnet (PurpleFox, Perkiler, and NuggetPhantom), which passed from 10,000 infected systems in 2020 to more than 100,000 in the first half
Publish At:2021-06-22 13:58 | Read:53 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet Cryptocurrency mine

Oleg Koshkin was convicted for operating a crypting service also used by Kelihos botnet

Russian national Oleg Koshkin was convicted for operating a “crypting” service used to obfuscate the Kelihos bot from antivirus software. Russian national Oleg Koshkin was convicted for charges related to the operation of a malware crypting service used by the Kelihos botnet to obfuscate malware and evade detection. “According to court documents
Publish At:2021-06-17 09:09 | Read:100 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybersecurity cybersecurit

US convicts Russian national behind Kelihos botnet crypting service

Russian national Oleg Koshkin was convicted for charges related to the operation of a malware crypter service used by the Kelihos botnet to obfuscate malware payloads and evade detection.Koshkin has been detained since he was arrested in California in September 2019, and he is facing a maximum penalty of 15 years in prison after September 20, 2021,
Publish At:2021-06-16 13:59 | Read:149 | Comments:0 | Tags:Security botnet

TrickBot indictment reveals the scale and complexity of organized cybercrime

Back in 2016, we saw the emergence of a botnet mainstay called TrickBot. Initially observed by our Labs team spreading via malvertising campaigns, it quickly became a major problem for businesses everywhere. Whether spread by malvertising or email spam, the end result was the same. Data exfiltration and the threat of constant reinfection were the order of th
Publish At:2021-06-08 15:46 | Read:139 | Comments:0 | Tags:Cybercrime botnet malware money mule phishing ransomware tri

US arrested Latvian woman who developed part of Trickbot malware

The US Department of Justice (DOJ) announced the arrest of a Latvian woman for her alleged role in the development of the Trickbot malware. The US Department of Justice (DOJ) announced the arrest of Alla Witte (aka Max), a Latvian woman that was charged for her alleged role in the development of the Trickbot malware. Alla Witte was arrested on February
Publish At:2021-06-05 19:03 | Read:195 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet Cybersecurity cyber

Destroying a botnet

We all know what a police raid looks like. Kicking down doors, flash grenades, shouting, noise and chaos as the police lead their suspects away in handcuffs. At least that’s how TV shows it. But when police went into action to break up a global cybercrime network, events were quite different. A truly global botnet Since 2017, organisations across the world h
Publish At:2021-05-24 07:07 | Read:277 | Comments:0 | Tags:Mobile News Security Botnet emotet Ransomware botnet

Discovery of Simps Botnet Leads To Ties to Keksec Group

Uptycs’ threat research team discovered a new botnet, tracked as Simps botnet, attributed to Keksec group, which is focused on DDOS activities Uptycs’ threat research team has discovered a new Botnet named ‘Simps’ attributed to Keksec group primarily focussed on DDOS activities. We discovered the Simps Botnet binaries downloaded via shell scri
Publish At:2021-05-18 05:06 | Read:246 | Comments:0 | Tags:Breaking News Malware botnet Cybersecurity cybersecurity new

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

The Cuba Ransomware gang has partnered with the crooks behind the Hancitor malware in attacks aimed at corporate networks. The Hancitor downloader has been around for quite some time already. It is known since at least 2016 for dropping Pony and Vawtrak. As a loader, it has been used to download other malware families, such as Ficker stealer and
Publish At:2021-05-07 06:09 | Read:351 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet Cuba Ransomware Cyb

FBI shares with HIBP 4 million email addresses involved in Emotet attacks

The FBI has shared with Have I Been Pwned service 4 million email addresses collected by Emotet botnet and employed in malware campaigns. Last week, European law enforcement has conducted an operation aimed at performing a mass-sanitization of computers infected with the infamous Emotet Windows malware. The authorities automatically wiped the infamous&nbs
Publish At:2021-04-27 15:04 | Read:640 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet cyber security news

Bye Bye Emotet, law enforcement pushed the uninstall code via the botnet

European law enforcement has conducted an operation aimed at performing a mass-sanitization of computers infected with the infamous Emotet Windows malware. European law enforcement agencies automatically wiped the infamous Emotet malware from infected systems across the world as part of a mass sanitization operation. Early this year, law enforcement an
Publish At:2021-04-26 11:39 | Read:613 | Comments:0 | Tags:Breaking News Cyber Crime Malware cyber security news Cyberc

Uninstall Command Completes Emotet Botnet Cleanup Operation

Roughly one million computers are getting rid of the Emotet malware after law enforcement agencies served them an update meant to trigger an uninstall process on April 25.One of the most prevalent threats of the past half a decade, Emotet first emerged in 2014 as a banking Trojan, but evolved into a malware downloader that was employed by many cybercriminals
Publish At:2021-04-26 10:20 | Read:440 | Comments:0 | Tags:Endpoint Security NEWS & INDUSTRY Virus & Threats Vi

Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws

Attackers are exploiting the ProxyLogon flaws in Microsoft Exchange to recruit machines in a cryptocurrency botnet tracked as Prometei. Experts from the Cybereason Nocturnus Team have investigated multiple incidents involving the Prometei Botnet. The attackers hit companies in North America and threat actors exploited the ProxyLogon Microsoft Exchange fla
Publish At:2021-04-26 07:44 | Read:665 | Comments:0 | Tags:Breaking News Cyber Crime Malware cyber security news Cybers

A new Linux Botnet abuses IaC Tools to spread and other emerging techniques

A new Linux botnet uses Tor through a network of proxies using the Socks5 protocol, abuses legitimate DevOps tools, and other emerging techniques. Researchers from Trend Micro have spotted a new Linux botnet employing multiple emerging techniques among cyber-criminals, including the use of Tor proxies, the abuse of legitimate DevOps tools, and the removal
Publish At:2021-04-24 04:00 | Read:497 | Comments:0 | Tags:Breaking News Malware botnet

Tor-Based Linux Botnet Abuses IaC Tools to Spread

A recently observed malware botnet targeting Linux systems is employing many of the emerging techniques among cyber-criminals, such as the use of Tor proxies, legitimate DevOps tools, and the removal of competing malware, according to new research from anti-malware vendor Trend Micro. The researchers say the malware is capable of downloading all of the files
Publish At:2021-04-23 15:45 | Read:612 | Comments:0 | Tags:Endpoint Security NEWS & INDUSTRY Application Security E

Prometei Botnet Adds New Twist to Exchange Server Attacks

Attackers are using the well-known Microsoft Exchange Server flaw to add machines to a cryptocurrency botnet, researchers say.Researchers report Russian attackers are using Microsoft Exchange Server vulnerabilities to take over machines and add them to the Prometei botnet.Related Content:7 Old IT Things Every New InfoSec Pro Should Know Special Rep
Publish At:2021-04-22 20:07 | Read:434 | Comments:0 | Tags: botnet