DreamBus botnet targets servers running on Linux
The new threat is a variant on previous malware from 2019.
Zscaler’s ThreatLabZ research team have recently identified a new Linux-based malware family. They announced their findings in a "Technical Analysis" published last week on Zscaler's website.
The researchers have named their new fin... Read more
Crypto botnet Prometei targets devices to mine cryptocurrency Monero
A new botnet called Prometei is targeting the cryptocurrency Monero. According to Cisco Talos researchers, Prometei is designed to brute force into as many devices as possible, and mine Monero (XRM) cryptocurrency on behalf of its operators.
Prometei has been active since March and uses a mix of... Read more
Majority of malware is invisible without https inspection
Two-thirds (67 percent) of the malware delivered in the first quarter of 2020 used encrypted https connections, according to a study by WatchGuard Technologies. Without https inspection, these threats can not be detected.
Of the encrypted malware, 72 percent involve zero-day malware that hasn't ... Read more
Hackers mine Monero cryptic currency through Docker vulnerability
A group of hackers is scanning the entire Internet to find vulnerabilities in certain systems that use enterprise sandbox software. They then use the vulnerabilities to minimise cryptographic currency, in this case the Monero cryptographic currency.
According to security researchers at Bad Packe... Read more
Unpatched Docker hosts target of cryptojacking campaign
Hackers have successfully attacked hundreds of unpatched Docker hosts. The cybercriminals were able to use the hosts to run cryptomining scripts. That puts security firm Imperva in a new report, reports Silicon Angle.
The new wave of attacks on Docker follows the announcement of a vulnerability in F... Read more
Trojan SpeakUp abuses new vulnerability in Linux
Hackers have developed a new backdoor trojan that can run on Linux systems. The malware is called SpeakUp and currently focuses mainly on Linux servers located in China. The hackers behind this series of attacks use the ThinkPHP framework to infect servers.
Once the trojan gets a foothold in one of ... Read more
WebCobra malware installs miners for monero and zcash
McAfee Labs reports that a new type of malware has been found that works as a cryptographic mineral. The malware bears the name WebCobra and takes over his victim's device. Then it starts with cryptographic currency mining, including zcash and monero. Of course, the earnings go to the hackers.
The t... Read more
False Flash update has malware for cryptojacking on board
Palo Alto Networks warns of a new malware campaign that uses a seemingly legitimate update to Adobe Flash for cryptojacking.
The campaign was supposed to have been going on at least since August and had a significant peak in activity in September. Researchers at Palo Alto found the threat during a s... Read more
“Hundreds of Dutch routers hacked to generate cryptic currency.
Dutch routers are used by hackers to generate cryptographic currency monero. Hundreds of routers would have been hacked. These are MikroTik brand routers, which have a vulnerability that has been known for months. A patch was released last April, but many have not yet installed it.
Today, RTL News r... Read more
Add-ons from popular media player Kodi are infected with malware
ESET states that its analysts have discovered that add-ons for the open-source media player Kodi are infected with malware and are targeted at Windows and Linux users. This is apparent from a report that has yet to be published.
ZDNet states that today on the basis of notification from the firm. At ... Read more