HackDig : Dig high-quality web security articles for hackers

New 'FreakOut' Malware Ensnares Linux Devices Into Botnet

A recently identified piece of malware is targeting Linux devices to ensnare them into a botnet capable of malicious activities such as distributed denial of service (DDoS) and crypto-mining attacks.Dubbed FreakOut, the malware is infecting devices that haven’t yet received patches for three relatively new vulnerabilities, including one that was made public
Publish At:2021-01-20 11:23 | Read:200 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

FreakOut botnet target 3 recent flaws to compromise Linux devices

Security researchers uncovered a series of attacks conducted by the FreakOut botnet that leveraged recently discovered vulnerabilities. Security researchers from Check Point have uncovered a series of attacks associated with the FreakOut botnet that is targeting multiple unpatched flaws in applications running on top of Linux systems. The botnet appear
Publish At:2021-01-19 09:55 | Read:164 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware botnet FreakOut ha

TeamTNT botnet now steals Docker API and AWS credentials

Researchers from Trend Micro discovered that the TeamTNT botnet is now able to steal Docker API logins along with AWS credentials. Researchers from Trend Micro discovered that the TeamTNT botnet was improved and is now able to steal also Docker credentials. The TeamTNT botnet is a crypto-mining malware operation that has been active since April 2020 an
Publish At:2021-01-10 07:00 | Read:212 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware AWS botnet cryptoc

The Emotet botnet is back and hits 100K recipients per day

Emotet is back on Christmas Eve, cybercrime operators are sending out spam messages to deliver the infamous Trickbot Trojan. Emotet is back on Christmas Eve, after two months of silence, cybercrime operators are sending out spam messages to deliver the infamous Trickbot Trojan. The recent Emotet campaign uses updated payloads and is targeting over 100,
Publish At:2020-12-26 10:50 | Read:301 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware botnet EMOTET hack

Gitpaste-12 worm botnet returns with 30+ vulnerability exploits

Recently discovered Gitpaste-12 worm that spreads via GitHub and also hosts malicious payload on Pastebin, has returned with even more exploits.The first iteration of Gitpaste-12 shipped with reverse shell and crypto-mining capabilities and exploited over 12 known vulnerabilities, therefore the moniker.This time, the advanced wo
Publish At:2020-12-20 16:01 | Read:566 | Comments:0 | Tags:Security Technology Vulnerability exploit botnet

When zombie malware leads to big-money ransomware attacks

byPaul DucklinThe first thing people want to know when there’s a new ransomware story going around is: How much are the crooks asking for this time?Sadly, that is one question that victims themselves don’t need to ask, because the blackmailers who just attacked them will make jolly sure they know the “price”. In one recent and confron
Publish At:2020-12-17 10:25 | Read:240 | Comments:0 | Tags:Botnet Phishing Ransomware botnet Cybercrime malware ransomw

'PGMiner' Crypto-Mining Botnet Abuses PostgreSQL for Distribution

Palo Alto Networks security researchers have discovered a Linux-based cryptocurrency-mining botnet that being delivered via PostgreSQL.Dubbed PGMiner, the botnet exploits a remote code execution (RCE) vulnerability in PostgreSQL to compromise database servers and then abuse them for mining for the Monero cryptocurrency. However, the malware attempts to conne
Publish At:2020-12-15 09:35 | Read:190 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Hacked Subway UK marketing system used in TrickBot phishing campaign

Subway UK confirmed the hack of a marketing system that was used to send out phishing messages to deliver malware to the customers. Hackers have compromised a marketing system in Subway UK and used it to send out phishing messages to deliver malware to the customers. Subway UK customers received emails from ‘Subcard’ about the processing of
Publish At:2020-12-13 13:25 | Read:307 | Comments:0 | Tags:Breaking News Data Breach botnet data breach Hacking hacking

PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs

Researchers have discovered a botnet dubbed PgMiner that targets PostgreSQL databases running on Linux servers to install a cryptocurrency miner. Security researchers from Palo Alto Networks have discovered a new botnet, tracked as PgMiner, that targets PostgreSQL databases running on Linux servers to install a cryptocurrency miner. PostgreSQL, als
Publish At:2020-12-13 08:12 | Read:306 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Hacking Malware LINUX m

Phorpiex Botnet Named “Most Wanted Malware” in November 2020

The Phorpiex botnet earned the notorious designation of “most wanted malware” for the month of November 2020.In its Global Threat Index for November 2020, Check Point Research revealed that it had observed a surge in new Phorpiex botnet infections that had affected four percent of organizations globally.This threat activity enabled Phorpiex to re
Publish At:2020-12-09 10:14 | Read:287 | Comments:0 | Tags:IT Security and Data Protection Latest Security News Avaddon

Multi-Vector Miner+Tsunami Botnet with SSH Lateral Movement

Security researcher Tolijan Trajanovski (@tolisec) analyzed the multi-vector Miner+Tsunami Botnet that implements SSH lateral movement. A fellow security researcher, 0xrb, shared with me samples of a botnet that propagates using weblogic exploit. The botnet was also discovered by @BadPackets 5 days ago and it is still active as of now, December
Publish At:2020-12-02 07:00 | Read:248 | Comments:0 | Tags:Breaking News Internet of Things Malware botnet Hacking hack

DarkIRC botnet is targeting the critical Oracle WebLogic CVE-2020-14882

The critical remote code execution (RCE) vulnerability CVE-2020-14882 in Oracle WebLogic is actively exploited by operators behind the DarkIRC botnet. Experts reported that the DarkIRC botnet is actively targeting thousands of exposed Oracle WebLogic servers in the attempt of exploiting the CVE-2020-14882. The CVE-2020-14882 can be exploited by unauthe
Publish At:2020-12-01 15:24 | Read:240 | Comments:0 | Tags:Breaking News Cyber Crime Hacking botnet CVE-2020-14882 Dark

SSH-backdoor Botnet With ‘Research’ Infection Technique

Security expert Tolijan Trajanovski analyzed an SSH-backdoor Botnet that implements an interesting ‘Research’ infection technique. In a recent tweet, the malware researcher @0xrb shared a list containing URLs of recently captured IoT botnet samples. Among the links, there was an uncommon example, a URL behind a Discord CDN, which as pointed
Publish At:2020-11-26 06:42 | Read:335 | Comments:0 | Tags:Breaking News Malware Hacking information security news IT I

A new Stantinko Bot masqueraded as httpd targeting Linux servers

Researchers spotted a new variant of an adware and coin-miner botnet operated by Stantinko threat actors that now targets Linux servers. Researchers from Intezer have spotted a new variant of an adware and coin-miner botnet that is operated by Stantinko threat actors since 2012. The Stantinko botnet was first spotted by ESET in 2017, at the time it inf
Publish At:2020-11-24 15:42 | Read:435 | Comments:0 | Tags:Breaking News Cyber Crime Malware botnet Hacking hacking new

Experts warn of mass-scanning for ENV files left unsecured online

Threat actors are scanning the Internet for ENV files that usually contain API tokens, passwords, and database logins. Threat actors are scanning the internet for API tokens, passwords, and database logins that are usually used to store ENV files (Environment files) accidentally left exposed online. Environment files are configuration files that usuall
Publish At:2020-11-21 12:20 | Read:524 | Comments:0 | Tags:Breaking News Hacking botnet hacking news information securi

Tools

Tag Cloud