Tag Archives: exploit

IoT malware targeting zero-day vulnerabilities

Once it became evident that IoT devices can be relatively easily enslaved in botnets and that even their limited power can be used for a variety of nefarious purposes, it was open season for malicious actors. First, they targeted IoT devices with default or weak passwords, and manufacturers and users began changing them. Then they used known vulnerabilities, and IoT vendor increased their efforts to push out patches. Now, some of the botmasters are making … More ?

More here:
IoT malware targeting zero-day vulnerabilities

PyCryptoMiner ropes Linux machines into Monero-mining botnet

A Linux-based botnet that has been flying under the radar has earned its master at least 158 Monero (currently valued around $63,000). The malware The botnet is based on a crypto-miner written in the Python scripting language, a fact that serves to keep its existence on the down-low. “Unlike a binary malware alternative, a scripting language-based malware is more evasive by nature as it can be easily obfuscated. It is also executed by a legitimate … More ?

Read More:
PyCryptoMiner ropes Linux machines into Monero-mining botnet

Yet ANOTHER IE 0-day hole found: Malware-flingers already using it for drive-by badness

You read that right: OPT OUT of a botnet by hitting Ctrl+Alt+Del Security researchers have discovered new zero-day vulnerabilities in Internet Explorer that are already being harnessed by hackers to run a new type of drive-by attack.…

Visit link:
Yet ANOTHER IE 0-day hole found: Malware-flingers already using it for drive-by badness

Malicious JavaScript flips ad network into rentable botnet

Enslaved machines helplessly press Apache’s buttons Black Hat 2012   Security researchers have shown how hackers can use ad networks to create ephemeral, hard-to-trace botnets that can perform distributed-denial-of-service attacks at the click of a button.…

See the original post:
Malicious JavaScript flips ad network into rentable botnet

Report: DDoS attacks now MORE ANGRY, complex and targeted

Less like the Hulk, more like Iron Man The days when attackers relied on sheer bandwidth volume alone to knock out websites are over, with miscreants increasingly using application-layer and multi-vector attacks.…

View post:
Report: DDoS attacks now MORE ANGRY, complex and targeted

Zombies are attacking America – researchers

Banking sector DDoSers ‘used botnets’, say security boffins Hackers responsible for an ongoing series of attacks against US banks over the past week may be tapping into botnets to power their assaults, according to security researchers. Meanwhile, the Financial Services ISAC (Information Sharing and Analysis Center) continues to advise banks to be prepared for attack.…

Follow this link:
Zombies are attacking America – researchers

Cutwail botnet intensifies spam spewing

The old Cutwail botnet is still alive and spamming from its 1,5 million bots, and has lately been spotted using malicious HTML attachments. The spam emails vary from fake forwarded Xerox scans and …

See the original article here:
Cutwail botnet intensifies spam spewing