CowerSnail — Windows Backdoor from the Creators of SambaCry Linux Malware

Last month, we reported about a group of hackers exploiting SambaCry—a 7-year-old critical remote code execution vulnerability in Samba networking software—to hack Linux computers and install malware to mine cryptocurrencies.

The same group of hackers is now targeting Windows machines with a new backdoor, which is a QT-based re-compiled version of the same malware used to target Linux.

Continue reading CowerSnail — Windows Backdoor from the Creators of SambaCry Linux Malware

New Linux Malware Exploits SambaCry Flaw to Silently Backdoor NAS Devices

Remember SambaCry?

Almost two months ago, we reported about a 7-year-old critical remote code execution vulnerability in Samba networking software, allowing a hacker to remotely take full control of a vulnerable Linux and Unix machines.

We dubbed the… Continue reading New Linux Malware Exploits SambaCry Flaw to Silently Backdoor NAS Devices

Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability

Kaspersky Lab said it has seen some of the first exploits targeting a patched Samba vulnerability, and those are being used to mine Monero cryptocurrency. Continue reading Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability

7-Year-Old Samba Flaw Lets Hackers Access Thousands of Linux PCs Remotely

A 7-year-old critical remote code execution vulnerability has been discovered in Samba networking software that could allow a remote attacker to take control of an affected Linux and Unix machines.

Samba is open-source software (re-implementation of S… Continue reading 7-Year-Old Samba Flaw Lets Hackers Access Thousands of Linux PCs Remotely

BADLOCK – Are ‘Branded’ Exploits Going Too Far?

So there’s been hype about this big exploit coming, for over a month, before anything was released. It had a name, a website and a logo – and it was called Badlock. And now it’s out, and it’s more like Sadlock – really a local network DoS against DCE/RPC services on Windows and Linux with […]

The post BADLOCK – Are…

Read the full post at darknet.org.uk

Continue reading BADLOCK – Are ‘Branded’ Exploits Going Too Far?