Open ADB port attacks spread cryptocurrency-mining botnet
Attackers are targeting open Android Debug Bridge (ADB) ports running on Android devices to install cryptocurrency-mining botnet malware.
Xenotime hackers target electric utilities
A hacker group known for intrusions against oil and gas facilities is now expanding attacks against the electric utility sector.
Oracle WebLogic Server vulnerability exploited to install cryptocurrency miner
Researchers at Trend Micro said bad actors are exploiting an Oracle WebLogic Server deserialization vulnerability CVE-2019-2725 to install a Monero cryptocurrency miner. Oracle patched the remote code execution vulnerability CVE-2019-2725…
Malware spam campaign targets Office vulnerability (CVE-2017-11882)
Microsoft is warning about a malware spam campaign targeting an Office vulnerability patched in 2017.
GoldBrute botnet targets 1.5M exposed RDP servers
A new botnet dubbed "GoldBrute" targets 1.5 million publicly exposed RDP servers on the internet via brute force attack.
New HiddenWasp malware targets Linux systems
A new strain of malware called "HiddenWasp" targeting Linux-based systems has been discovered by researchers.
Nansh0u campaign targets Windows MS-SQL and PHPMyAdmin servers
A China-based cyber campaign dubbed "Nansh0u" has targeted tens of thousands of unsecured Windows MS-SQL and PHPMyAdmin servers worldwide.
MySQL servers attacked to install GandCrab ransomware
Security experts setup a honeypot to lure attackers into an exposed insecure MySQL server and install GandCrab ransomware.
New Mirai variant exploits IoT devices
A new Mirai botnet variant has evolved to exploit 13 different vulnerabilities found on routers, surveillance products and other internet of things (IoT) devices.
WhatsApp vulnerability could be exploited to install spyware
A vulnerability in Facebook's WhatsApp could allow attackers to install spyware on impacted smartphones.