Worm uses removable drives to install BLADABINDI backdoor

Last week, a worm was used to spread via removable drives and install a fileless version of the BLADABINDI backdoor. BLADABINDI is notable as a remote access tool (RAT) used for multiple backdoor capabilities and used for keylogging and DDoS threats.

Continue Reading Worm uses removable drives to install BLADABINDI backdoor

GoScanSSH malware targets default and weak passwords

Talos security researchers have spotted a new family of malware dubbed "GoScanSSH" that compromises internet-facing SSH servers. The malware targets default and weak passwords via a brute force attack on SSH systems that allow password-based SSH authentication.

Continue Reading GoScanSSH malware targets default and weak passwords