rootkit Archives - Securezoo

Pro-Ocean cryptojacking malware targets cloud applications

Cloud Security, Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / February 1, 2021 / ApacheMQ, CVE-2016-3088, CVE-2017-10271, Mining, Oracle Weblogic, Pro-Ocean, rootkit, Unit 42, Watchdog, WebLogic

A new Pro-Ocean cryptojacking malware targets popular cloud applications including ApacheMQ, Oracle Weblogic and Redis. The malware contains four modules that execute to hide, mine cryptocurrency, watchdog and infect systems.

Pro-Ocean cryptojacking malware targets cloud applications Read More »

NSA and FBI: watch out for Russian malware Drovorub

Cybersecurity Attacks / Frank Crast / August 14, 2020 / APT28, C2, Drovorub, Fancy Bear, FBI, GTsSS, Linux, malware, NSA, rootkit, Russia, STRONTIUM

The National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have released a joint cybersecurity alert for a new Russian malware dubbed Drovorub.

NSA and FBI: watch out for Russian malware Drovorub Read More »

First UEFI rootkit LoJax discovered in the wild

Cybersecurity Attacks, Malware / Frank Crast / September 27, 2018 / APT28, Balkans, BIOS, EUFI, Fancy Bear, firmware, LoJax, malware, rootkit, Secure Boot, Sofacy, STRONTIUM

The first ever UEFI rootkit has been detected in the wild. As discovered by ESET security researchers, the Sednit APT group was behind the latest campaign that successfully installed a malicious UEFI rootkit dubbed LoJax on a victim system.

First UEFI rootkit LoJax discovered in the wild Read More »