HackDig : Dig high-quality web security articles

TeamTNT group targets poorly configured Docker servers exposing REST APIs

TeamTNT hackers are targeting poorly configured Docker servers as part of an ongoing campaign that started in October. Trend Micro researchers reported that TeamTNT hackers are targeting poorly configured Docker servers exposing Docker REST APIs as part of an ongoing campaign that started in October. Threat actors execute malicious scripts to deploy M
Publish At:2021-11-10 06:22 | Read:569 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Cryptocurrency min

Supply-chain attack on NPM Package UAParser, which has millions of daily downloads

The U.S. CISA warned of crypto-mining malware hidden in a popular JavaScript NPM library, named UAParser.js, which has millions of weekly downloads. The U.S. Cybersecurity and Infrastructure Security Agency published an advisory to warn of the discovery of a crypto-mining malware in the popular NPM Package UAParser.js. The popular lib
Publish At:2021-10-23 11:45 | Read:817 | Comments:0 | Tags:Breaking News Malware Cryptocurrency miner Cybersecurity cyb

Cryptominers Snuck Logic Bomb Into Python Packages

Malware can show up where you least expect it. Researchers discovered a logic bomb attack in the Python Package Index (PyPI) repository, which is code repository for Python developers and part of the software supply chain. Attackers aimed to get honest software developers to include the bombs in their applications by accident.  The researchers found si
Publish At:2021-09-13 16:32 | Read:672 | Comments:0 | Tags:Intelligence & Analytics Software Vulnerabilities Advanced T

Crooks target Kubernetes installs via Argo Workflows to deploy miners

Threat actors target Kubernetes installs via Argo Workflows to cryptocurrency miners, security researchers from Intezer warn. Researchers from Intezer uncovered new attacks on Kubernetes (K8s) installs via misconfigured Argo Workflows aimed at deploying cryptocurrency miners. Argo Workflows is an open-source, container-native workflow engine designed
Publish At:2021-07-25 12:38 | Read:1395 | Comments:0 | Tags:Breaking News Cyber Crime Malware Argo Workflows Cryptocurre

A Fly on ShellBot’s Wall: The Risk of Publicly Available Cryptocurrency Miners

IBM Security X-Force researchers studied the botnet activity of a malware variant that is used by cyber crime groups to illegally mine cryptocurrency. Examining two ShellBot botnets that appeared in attacks honeypots caught, the X-Force team was able to infect its own devices and become part of the live botnets, thereby gaining insight into how these botnet
Publish At:2021-06-29 15:05 | Read:596 | Comments:0 | Tags:Advanced Threats Malware Security Services IBM X-Force Resea

Six typosquatting packages in PyPI repository laced with crypto miner

Researchers discovered six rogue packages in the official Python programming language’s PyPI repository containg cryptocurrency mining malware. Experts from security firm Sonatype have uncovered six typosquatting packages in the official Python programming language’s PyPI repository that were laced with cryptomining malware. The Python Package Index (P
Publish At:2021-06-28 04:12 | Read:642 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cryptocurrency miner Cyber

DirtyMoe botnet infected 100,000+ Windows systems in H1 2021

DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. Researchers from Avast are warning of the rapid growth of the DirtyMoe botnet (PurpleFox, Perkiler, and NuggetPhantom), which passed from 10,000 infected systems in 2020 to more than 100,000 in the first half
Publish At:2021-06-22 13:58 | Read:1564 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet Cryptocurrency mine

Securing Your Cloud Transformation Journey

Cloud computing introduced a paradigm shift in how companies operated, maintained and spent on IT. Through its varied service models (IaaS, PaaS and SaaS), it offers companies the ability to spin up their infrastructure in minutes, auto scale on demand, pay only as per use and offset significant IT costs spent on running and maintaining expensive datacentre
Publish At:2021-06-08 05:21 | Read:1137 | Comments:0 | Tags:CISO Cloud Security Identity & Access Security Services Clou

Monero Cryptocurrency campaign exploits ProxyLogon flaws

Threat actors targeted are exploiting the ProxyLogon vulnerabilities in Microsoft Exchange servers to deploy Monero cryptocurrency miners. Sophos researchers reported that threat actors targeted Microsoft Exchange by exploiting ProxyLogon vulnerabilities to deploy malicious Monero cryptominer in an unusual attack. The unknown attacker is attempting to
Publish At:2021-04-18 15:39 | Read:1376 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cryptocurrency miner Hacki

Attackers are abusing GitHub infrastructure to mine cryptocurrency

The popular code repository hosting service GitHub is investigating a crypto-mining campaign abusing its infrastructure. Code repository hosting service GitHub launched an investigation in a series of attacks aimed at abusing its infrastructure to illicitly mine cryptocurrency. Such kind of attacks was reported at least since the end of 2020, when some
Publish At:2021-04-03 08:40 | Read:1417 | Comments:0 | Tags:Breaking News Hacking Malware Cryptocurrency miner GitHub ha

A Cryptomining botnet abuses Bitcoin blockchain transactions as C2 backup mechanism

Crooks are exploiting BTC blockchain transactions to hide backup command-and-control (C2) server addresses for a cryptomining botnet. Security experts from Akamai have spotted a new botnet used for illicit cryptocurrency mining activities that are abusing Bitcoin (BTC) transactions to implement a backup mechanism for C2.  This technique allows bot
Publish At:2021-02-24 19:00 | Read:1795 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Malware Cryptocurrency

TeamTNT group uses Hildegard Malware to target Kubernetes Systems

The TeamTNT hacker group has been employing a new piece of malware, dubbed Hildegard, to target Kubernetes installs. The hacking group TeamTNT has been employing a new piece of malware, dubbed Hildegard, in a series of attacks targeting Kubernetes systems. Early this year, researchers from Trend Micro discovered that the TeamTNT botnet was improved wit
Publish At:2021-02-05 14:48 | Read:1195 | Comments:0 | Tags:Breaking News Hacking Malware Cryptocurrency miner hacking n

MrbMiner cryptojacking campaign linked to Iranian software firm

Sophos experts believe that an Iranian company is behind a recently uncovered MrbMiner crypto-jacking campaign targeting SQL servers. Sophos researchers that investigated the recently uncovered crypto-mining campaign targeting SQL servers with MrbMiner malware believe that it was conducted by an Iran-based company. In September, a group of hackers lau
Publish At:2021-01-23 14:48 | Read:2717 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cryptocurrency miner Hacki

Dovecat crypto-miner is targeting QNAP NAS devices

QNAP is warning customers of a new piece of malware dubbed Dovecat that is targeting NAS devices to mine cryptocurrency. Taiwanese vendor QNAP has published a security advisory to warn customers of a new piece of malware named Dovecat that is targeting NAS devices. The malware was designed to abuse NAS resources and mine cryptocurrency. The malware tar
Publish At:2021-01-21 19:54 | Read:1087 | Comments:0 | Tags:Breaking News Internet of Things Malware Bitcoin Cryptocurre

New MrbMiner malware infected thousands of MSSQL DBs

A threat actor is launching brute-force attacks on MSSQL servers in the attempt to access them to install a new crypto-mining malware dubbed MrbMiner. A group of hackers is launching brute-force attacks on MSSQL servers with the intent to compromise them and install crypto-mining malware dubbed MrbMiner. According to security firm Tencent, the team of
Publish At:2020-09-16 05:52 | Read:1941 | Comments:0 | Tags:Breaking News Cyber Crime Hacking botnet crypto Cryptocurren

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3