Threatening botnets can be created with little code experience, Akamai finds

Researchers at Akamai’s Security Intelligence unit find a botnet specimen that reveals how successful DDoS, spam and other cyberattacks can be done with little finesse, knowledge or savvy.
The post Threatening botnets can be created with little code ex… Continue reading Threatening botnets can be created with little code experience, Akamai finds

Uncommon infection methods—part 2

Kaspersky researchers discuss infection methods used by Mirai-based RapperBot, Rhadamantys stealer, and CUEMiner: smart brute forcing, malvertising, and distribution through BitTorrent and OneDrive. Continue reading Uncommon infection methods—part 2

FBI (and Others) Shut Down Genesis Market

Genesis Market is shut down:

Active since 2018, Genesis Market’s slogan was, “Our store sells bots with logs, cookies, and their real fingerprints.” Customers could search for infected systems with a variety of options, including by Internet address or by specific domain names associated with stolen credentials.

But earlier today, multiple domains associated with Genesis had their homepages replaced with a seizure notice from the FBI, which said the domains were seized pursuant to a warrant issued by the U.S. District Court for the Eastern District of Wisconsin…

Continue reading FBI (and Others) Shut Down Genesis Market

A Security Vulnerability in the KmsdBot Botnet

Security researchers found a software bug in the KmsdBot cryptomining botnet:

With no error-checking built in, sending KmsdBot a malformed command­—like its controllers did one day while Akamai was watching­—created a panic crash with an “index out of range” error. Because there’s no persistence, the bot stays down, and malicious agents would need to reinfect a machine and rebuild the bot’s functions. It is, as Akamai notes, “a nice story” and “a strong example of the fickle nature of technology.”

Continue reading A Security Vulnerability in the KmsdBot Botnet

DDoS attacks in Q2 2022

Politically-motivated cyberattacks dominated the DDoS landscape in the second quarter of 2022 just as they did in Q1. Also, we saw the continuation of a trend that began in spring: an increase in superlong attacks. Continue reading DDoS attacks in Q2 2022

DOJ, international law enforcement disrupt massive RSOCKS botnet

The search warrant targeted a Florida hosting company alleged to have facilitated the botnet activity.

The post DOJ, international law enforcement disrupt massive RSOCKS botnet appeared first on CyberScoop.

Continue reading DOJ, international law enforcement disrupt massive RSOCKS botnet

Europol says it disabled FluBot botnet infecting ‘huge’ number of devices

Botnets have proven hard to permanently eradicate in the past, suggesting Europol’s success disabling the FluBot malware could be fleeting.

The post Europol says it disabled FluBot botnet infecting ‘huge’ number of devices appeared first on CyberScoop.

Continue reading Europol says it disabled FluBot botnet infecting ‘huge’ number of devices