HackDig : Dig high-quality web security articles

DDoS attacks in Q2 2022

News overview Politically-motivated cyberattacks dominated the DDoS landscape in the second quarter of 2022 just as they did in the previous reporting period. ALtahrea Team, a group targeting NATO and its partners, attacked public transportation websites in Israel and the United Kingdom. Israel saw a cyberattack on the Airports Authority, and UK, an attack o
Publish At:2022-08-03 05:09 | Read:55087 | Comments:0 | Tags:DDoS reports Botnets Cybercrime DDoS statistics DDoS-attacks

The Verizon 2022 DBIR

The Verizon 2022 Data Breach Investigations Report is out. We are proud to collaborate as a supporting contributor to this year’s data efforts once again and to have contributed for the past 8 years. The report provides interesting analysis of a full amount of global incident data. Several things stand out in the 2022 report: Ransomware challenges co
Publish At:2022-05-25 14:12 | Read:26404 | Comments:0 | Tags:Publications APT Botnets Cyber espionage Cybercrime Ransomwa

Sysrv botnet is out to mine Monero on your Windows and Linux servers

In a Twitter thread, the Microsoft Security Intelligence team have revealed new information about the latest versions of the Sysrv botnet. The variant they focused on uses a range of known exploits for vulnerabilities in web apps and databases to install cryptocurrency miners on both Windows and Linux systems. Background The Sysrv botnet first recei
Publish At:2022-05-18 09:01 | Read:163257 | Comments:0 | Tags:Botnets Exploits and vulnerabilities botnet crypto miner cve

DDoS attacks in Q1 2022

News overview The DDoS landscape in Q1 2022 was shaped by the ongoing conflict between Russia and Ukraine: a significant part of all DDoS-related news concerned these countries. In mid-January, the website of Kyiv Mayor Vitali Klitschko was hit by a DDoS attack, and the websites of a number of Ukrainian ministries were defaced. In mid-February, DDoS attacks
Publish At:2022-04-25 07:21 | Read:80007 | Comments:0 | Tags:DDoS reports Botnets Cybercrime DDoS-attacks Internet of Thi

Zloader, another botnet, bites the dust

p>Microsoft has announced that its Digital Crimes Unit (DCU) has taken legal and technical action to disrupt a malicious botnet called Zloader. Zloader or Zbot are common names used to refer to any malware related to the ZeuS family. There are a lot of those because the ZeuS banking Trojan source code was leaked in 2011, and so there’s been plenty o
Publish At:2022-04-14 08:52 | Read:130748 | Comments:0 | Tags:Botnets BlackMatter botnet darkside dcu dga microsoft ryuk s

Emotet modules and recent attacks

p>Emotet was first found in the wild in 2014. Back then its main functionality was stealing user banking credentials. Since then it has survived numerous transformations, started delivering other malware and finally became a powerful botnet. In January 2021 Emotet was disrupted by a joint effort of different countries’ authorities. It took the threat a
Publish At:2022-04-13 07:22 | Read:151197 | Comments:0 | Tags:Malware descriptions Botnets Emotet Malware Malware Descript

Successful operations against Russian Sandworm and Strontium groups targeting Ukraine revealed

p>The US Department of Justice (DoJ) and Microsoft have taken the sting out of two operations believed to be controlled by the Russian Federation’s Main Intelligence Directorate (GRU). On Wednesday, the DOJ announced that it had disrupted GRU’s control over thousands of internet-connected firewall devices compromised by the Russian Sandworm group. One
Publish At:2022-04-08 12:48 | Read:119714 | Comments:0 | Tags:Botnets Reports asus botnets cyclops blink DOJ GRU microsoft

DDoS attacks in Q4 2021

News roundup Q4 2021 saw the appearance of several new DDoS botnets. A zombie network, named Abcbot by researchers, first hit the radar in July, but at the time it was little more than a simple scanner attacking Linux systems by brute-forcing weak passwords and exploiting known vulnerabilities. In October, the botnet was upgraded with DDoS functionality. The
Publish At:2022-02-10 07:20 | Read:78839 | Comments:0 | Tags:DDoS reports Botnets Cybercrime DDoS-attacks Internet of Thi

DDoS attacks in Q3 2021

News overview Q3 2021 brought two new DDoS attack vectors, potentially posing a serious threat, including for major web resources. A team of researchers from the University of Maryland and the University of Colorado Boulder found a way to spoof the victim’s IP address over TCP. To date, amplification attacks have mostly been carried out using the UDP p
Publish At:2021-11-08 06:05 | Read:165090 | Comments:0 | Tags:DDoS reports Botnets Cybercrime DDoS-attacks Internet of Thi

How Companies Can Prepare for Botnet Attacks on APIs

Organizations aren’t slowing down in their use of application programming interfaces (APIs). According to a survey covered by DEVOPSdigest, 61.3% of organizations used more APIs in 2020 than they did a year earlier. An even greater proportion (71.3%) said they plan to use even more APIs in 2021. Another 21.2% expected to use the same number of APIs ov
Publish At:2021-09-10 12:36 | Read:99995 | Comments:0 | Tags:Application Security Cloud Security Risk Management Security

Largest DDoS attack ever reported gets hoovered up by Cloudflare

On the Cloudflare blog, the American web infrastructure behemoth that provides content delivery network (CDN) and DDoS mitigation services reports that it detected and mitigated a 17.2 million request-per-second (rps) DDoS attack. To put that number in perspective. The company reports that this is three times as large as anything it has seen before. DDoS
Publish At:2021-08-20 12:24 | Read:158690 | Comments:0 | Tags:Botnets Coudflare ddos huawei IoT microsoft mirai mozi netge

Check your passwords! Synology NAS devices under attack from StealthWorker

Synology PSIRT (Product Security Incident Response Team) has put out a warning that it has recently seen and received reports about an increase in brute-force attacks against Synology devices. PSIRT suspects the botnet commonly known as StealthWorker is responsible for this increase in activity. Synology Synology specializes in data storage and most pe
Publish At:2021-08-10 12:21 | Read:36461 | Comments:0 | Tags:Botnets C&C click fraud cryptojackers ddos Golang mfa nas ra

LemonDuck no longer settles for breadcrumbs

LemonDuck has evolved from a Monero cryptominer into LemonCat, a Trojan that specializes in backdoor installation, credential and data theft, and malware delivery, according to the Microsoft 365 Defender Threat Intelligence Team, which explained their findings in a two-part story [1][2] on the Microsoft Security blog. LemonDuck Trojan.LemonDuck has al
Publish At:2021-07-30 13:57 | Read:32539 | Comments:0 | Tags:Botnets C&C cross-platform LemonCat LemonDuck LNK malspam pr

DDoS attacks in Q2 2021

News overview In terms of big news, Q2 2021 was relatively calm, but not completely eventless. For example, April saw the active distribution of a new DDoS botnet called Simps — the name under which it introduced itself to owners of infected devices. The malware creators promoted their brainchild on a specially set-up YouTube channel and Discord server, wher
Publish At:2021-07-28 08:34 | Read:51198 | Comments:0 | Tags:DDoS reports Botnets Cybercrime DDoS-attacks Internet of Thi

DDoS attacks in Q1 2021

News overview Q1 2021 saw the appearance of two new botnets. News broke in January of the FreakOut malware, which attacks Linux devices. Cybercriminals exploited several critical vulnerabilities in programs installed on victim devices, including the newly discovered CVE-2021-3007. Botnet operators use infected devices to carry out DDoS attacks or mine crypto
Publish At:2021-05-10 08:17 | Read:109651 | Comments:0 | Tags:DDoS reports Botnets Cybercrime DDoS-attacks Internet of Thi

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud