Malware - Securezoo

XorDdos: DDoS malware targets Linux systems

Cybersecurity Attacks, Malware / By Frank Crast / May 21, 2022 May 21, 2022

Over the past six months, Microsoft has observed a spike in cyberactivity of 254% from XorDdos, a trojan targeting Linux-based cloud systems and Internet of Things (IoT) devices.

Homemade DCRat can open “backdoors on a budget”

Malware / By Frank Crast / May 10, 2022 May 10, 2022

Researchers from Blackberry have discovered a redesigned remote access trojan DCRat that a lone cyber criminal is now offering as a homemade tool for opening “backdoors on a budget.”

Emotet botnet reemerges with new threat behaviors

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / May 4, 2022 May 4, 2022

Researchers from Proofpoint have observed the reemergence of Emotet botnet that has exhibited new behaviors in using new attack techniques.

ransomware, cybersecurity, cyber-3998798.jpg

FBI: BlackCat ransomware has compromised 60 entities worldwide

Cybersecurity Attacks, Malware / By Frank Crast / April 25, 2022 April 25, 2022

The Federal Bureau of Investigation (FBI) has released new information on BlackCat (also known as ALPHV) ransomware as a service (RaaS), that has compromised at least 60 entities worldwide as of March 2022.

Denonia malware targets AWS Lambda

Cloud Security, Cybersecurity Attacks, Malware / By Frank Crast / April 8, 2022 April 8, 2022

A first of its kind malware dubbed Denonia has been targeting Amazon Web Services (AWS) Lambda, an event-driven, serverless computing platform.

Threat actors exploit Spring4Shell to weaponize and execute Mirai botnet

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / April 8, 2022 April 8, 2022

Researchers from Trend Micro have spotted threat actors exploiting the Spring4Shell vulnerability CVE-2022-22965 to weaponize and execute Mirai botnet.

Deep Panda APT group launches new attacks against Log4Shell vulnerability to install Fire Chili rootkits

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / April 2, 2022 April 2, 2022

In the past month, researchers from FortiLabs have detected a new cyber campaign involving Chinese Advanced Persistent Threat (APT) group Deep Panda that has exploited the Log4Shell (log4j) vulnerability CVE-2021-44228 on vulnerable VMware Horizon servers to install digitally signed Fire Chili rootkits.

FBI: AvosLocker Ransomware targets victims in critical infrastructure sectors

Malware, Vulnerabilities & Exploits / By Frank Crast / March 21, 2022 March 21, 2022

The Federal Bureau of Investigation (FBI) has issued a report of cybercriminals using AvosLocker ransomware to target 52 entities across critical infrastructure sectors. The report includes the latest indicators of compromise (IoC) on the ransomware threat.

FBI alert: RagnarLocker Ransomware targeted 52 entities

Cybersecurity Attacks, Malware / By Frank Crast / March 9, 2022 March 13, 2022

The Federal Bureau of Investigation (FBI) has issued a report of cybercriminals using RagnarLocker ransomware to target 52 entities across critical infrastructure sectors. The report includes the latest updates on indicators of compromise (IoC) on the ransomware threat.

IsaacWiper: another disk wiping malware targets Ukraine systems

Cybercrime, Cybersecurity Attacks, Malware / By Frank Crast / March 2, 2022 March 13, 2022

Following on the footsteps of other destructive disk-wiping malware attacks, ESET researchers have also discovered a second wiper malware dubbed IsaacWiper targeting governmental networks in Ukraine.