HackDig : Dig high-quality web security articles for hackers

SSH-backdoor Botnet With ‘Research’ Infection Technique

Security expert Tolijan Trajanovski analyzed an SSH-backdoor Botnet that implements an interesting ‘Research’ infection technique. In a recent tweet, the malware researcher @0xrb shared a list containing URLs of recently captured IoT botnet samples. Among the links, there was an uncommon example, a URL behind a Discord CDN, which as pointed
Publish At:2020-11-26 06:42 | Read:105 | Comments:0 | Tags:Breaking News Malware Hacking information security news IT I

A new Stantinko Bot masqueraded as httpd targeting Linux servers

Researchers spotted a new variant of an adware and coin-miner botnet operated by Stantinko threat actors that now targets Linux servers. Researchers from Intezer have spotted a new variant of an adware and coin-miner botnet that is operated by Stantinko threat actors since 2012. The Stantinko botnet was first spotted by ESET in 2017, at the time it inf
Publish At:2020-11-24 15:42 | Read:163 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet Hacking hacking new

Experts warn of mass-scanning for ENV files left unsecured online

Threat actors are scanning the Internet for ENV files that usually contain API tokens, passwords, and database logins. Threat actors are scanning the internet for API tokens, passwords, and database logins that are usually used to store ENV files (Environment files) accidentally left exposed online. Environment files are configuration files that usuall
Publish At:2020-11-21 12:20 | Read:197 | Comments:0 | Tags:Breaking News Hacking botnet hacking news information securi

We infiltrated an IRC botnet. Here’s what we found

The CyberNews.com Investigation team carried out an infiltration operation against an IRC botnet and reported it to CERT Vietnam to help take it down. Original post @ https://cybernews.com/security/we-infiltrated-an-irc-botnet-heres-what-we-found/ In order to gather valuable information about the IRC botnet’s activity, we joined its Command and Control
Publish At:2020-11-19 14:48 | Read:113 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware hacking news infor

Sophos 2021 Threat Report: Navigating cybersecurity in an uncertain world

byPaul DucklinWe know what you’re thinking: “Another year; another vendor; another threat report……and when I open it, I’ll be stuck in a thinly disguised product brochure.”Well, not this one.We’ve combined research from a number of threat prevention groups inside Sophos, including SophosLabs, Sophos Managed Threat Re
Publish At:2020-11-18 12:13 | Read:127 | Comments:0 | Tags:Android BEC Botnet Data loss Linux Machine Learning Malware

Muhstik botnet adds Oracle WebLogic and Drupal exploits

Muhstik botnet leverages known web application exploits to compromise IoT devices, now it targeting Oracle WebLogic, Drupal. Muhstik is a botnet that is known to use web application exploits to compromise IoT devices, it has been around for at least 2018. Botnet operators monetize their efforts via XMRig, cgmining and with DDoS-for-hire services.  T
Publish At:2020-11-11 15:41 | Read:159 | Comments:0 | Tags:Uncategorized exploit botnet

Chinese-linked Muhstik botnet targets Oracle WebLogic, Drupal

Muhstik botnet, also known as Mushtik, has been targeting cloud infrastructure and IoTs for years.The botnet mainly funds itself by mining cryptocurrency using open source tools like XMRig and cgminer.New details have emerged related to this malware that shed light on its nefarious activities and origins.What is Muhstik?Muhstik 
Publish At:2020-11-11 12:06 | Read:210 | Comments:0 | Tags:Security Cloud botnet

New Gitpaste-12 Botnet Exploits 12 Known Vulnerabilities

Researchers discover a new worm and botnet dubbed Gitpaste-12 for its ability to spread via GitHub and Pastebin.Security researchers have discovered a new worm and botnet dubbed Gitpaste-12, named for its usage of GitHub and Pastebin to host component code and the 12 known vulnerabilities it exploits to compromise systems.Related Content:APT Groups Get Innov
Publish At:2020-11-06 21:13 | Read:208 | Comments:0 | Tags: exploit botnet

Reverse shell botnet Gitpaste-12 spreads via GitHub and Pastebin

A newly discovered worm and botnet named Gitpaste-12 lives on GitHub and also uses Pastebin to host malicious code.The advanced malware comes equipped with reverse shell and crypto-mining capabilities and exploits over 12 known vulnerabilities, therefore the moniker.Spreads via GitHub, attacks in 12 different waysGitpaste-12 was first detected by Junipe
Publish At:2020-11-06 07:18 | Read:160 | Comments:0 | Tags:Security Software botnet

Prison for Russian Player in $100m Botnet Conspiracy

A Russian cyber-criminal will spend the next eight years in an American prison for his role in a sophisticated multi-million-dollar Botnet conspiracy.Skilled computer programmer Aleksandr Brovko admitted being involved in a scheme to steal sensitive personal and financial data and traffic it on the darknet that caused estimated losses of over $100m.From 2007
Publish At:2020-11-03 14:13 | Read:110 | Comments:0 | Tags: botnet

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Russian cybercriminal Aleksandr Brovko has been sentenced to eight years in jail for his role in a botnet scheme that caused at least $100 million in financial damage.  The Russian cybercriminal Aleksandr Brovko (36) has been sentenced to eight years in jail for his role in a sophisticated botnet scheme that caused at least $100 million in financial damag
Publish At:2020-11-03 12:41 | Read:189 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Security Aleksandr

Russian National Sentenced to 8 Years in Prison for Role in Botnet Operation

Cybercrime scheme netted more than $100 million.Aleksandr Brovko, formerly of the Czech Republic, will serve eight years in prison for his role in operating a scheme to steal and traffic sensitive personal and financial information in an operation that resulted in a loss to victims of some $100 million.Related Content: Botnet Infects Hundreds of Thousands of
Publish At:2020-11-02 19:43 | Read:208 | Comments:0 | Tags: botnet

New Emotet delivery method spotted during downward detection trend

Emotet, one of cybersecurity’s most-feared malware threats, got a superficial facelift this week, hiding itself within a fake Microsoft Office request that asks users to update Microsoft Word so that they can take advantage of new features. This revamped presentation could point to internal efforts by threat actors to increase Emotet’s hit rate—a possibil
Publish At:2020-10-28 18:41 | Read:229 | Comments:0 | Tags:Malwarebytes news botnet Edward Snowden emotet Microsoft Off

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Security experts spotted a new botnet, tracked as KashmirBlack botnet, that likely infected hundreds of thousands of websites since November 2019. Security experts from Imperva have spotted a new sophisticated botnet, tracked as KashmirBlack is believed to have already infected hundreds of thousands of websites by exploiting vulnerabilities in their conte
Publish At:2020-10-26 13:35 | Read:229 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet Hacking hacking new

KashmirBlack Botnet Uses DevOps to Stay Agile

Security researchers have lifted the lid on a highly sophisticated global botnet operation performing millions of attacks per day, including cryptocurrency mining, spamming and defacements.Dubbed “KashmirBlack” by a team at Imperva, hundreds of thousands of compromised machines are controlled by a single command and control (C&C) server.Activ
Publish At:2020-10-22 09:43 | Read:199 | Comments:0 | Tags: botnet

Tools