Cutwail-Like Wigon.PH_44 Trojan Sends Spam, Steals Data

A new spambot has been discovered that generates copious amounts of HTTP POST and GET requests in an attempt to disguise what it’s really up to and throw off the scent of detection capabilities. “In this case, it seems like it’s trying to hide impactful communication where there are actual payloa...

Microsoft remotely deleted Tor-based 'Sefnit Botnet' from more than 2 Million Systems

In October 2013, Microsoft adopted a silent, offensive method to tackle infection due to a Tor-based botnet malware called 'Sefnit'. In an effort to takedown of the Sefnit botnet to protect windows users, Microsoft remotely removes the older versions of installed Tor Browser software and infectio...

Mariposa Botnet

Overview ICS-CERT has received reports and investigated infections of the MariposaDefence Intelligence, http://defintel.com/docs/MariposaAnalysis.pdf, website last accessed March 15, 2010. botnet, which have affected the business networks of multiple control system owners in recent months. ICS-CE...

100,000 Refrigerators and other home appliances hacked to perform cyber attack

Have you given shed to Zombies in your house? No???? May be you have no idea about it. After Computers, Servers, Routers, Mobiles, Tablets…. Now its turn of your home appliances to be a weapon or a victim of cyber war. Recently Security Researchers from Proofpoint found more than 100,000 Smart TV...

Cyber criminals targeting another cryptocurrency 'Primecoin' with malicious miners

Like Bitcoin, There are numerous other cryptocurrency similar in nature, including MasterCoin, ProtoShares, Litecoin, Peercoin, BitBar and many more. One of them is Primecoin sign: Ψ; code: XPM, a peer-to-peer open source cryptocurrency that implements a scientific computing proof-of-work system...

Yahoo Removes Ads Redirecting to Magnitude Exploit Kit

The race to replace the Blackhole Exploit Kit as the web exploit pack of choice for cybercriminals seems to have an early leader in Magnitude. Researchers at Dutch security firm Fox-IT reported over the weekend that European visitors to Yahoo were falling victim to malicious ads hosted on the sit...

Microsoft Says ZeroAccess Click-Fraud Botnet Abandoned

Microsoft is declaring the ZeroAccess botnet dead. Two weeks after obtaining a court order to disrupt the botnet’s ability to carry out click-fraud, assistant general counsel Richard Boscovich of Microsoft’s Digital Crimes Unit said late last week that the botmasters behind ZeroAccess had abandon...

Cutwail Spam Botnet Feels Effect of Blackhole Takedown

The arrest of alleged hacker Paunch and the subsequent dismantling of the Blackhole Exploit Kit operation has cybercrime groups scrambling to find another automated means of delivering exploits. In the meantime, some are settling for old-school tactics that include infected email attachments and ...

Trojan.Ferret DDoS Botnet Discovered

Researchers at Arbor Networks have identified a new DDoS bot with a fancy for ferrets. Following a clue in a tweet, researcher Dennis Schwarz found Trojan.Ferret, including a command and control panel with some insight into targets. To date, a relatively small number of malware samples and comman...

Chewbacca Tor-Based Malware Steals Keystrokes

The Tor network may provide a lead-lined cover for Internet users seeking a measure of privacy online, but it also has proven to be an attractive shelter for attackers. A number of malware campaigns have been able to successfully maneuver on Tor, using the anonymity network as a communication...

Firefox Botnet Searches for Sites Prone to SQL injection

Attackers have been automating SQL injection attacks for a number of years, but in a fairly new twist, a botnet masquerading as a Firefox browser add-on is carrying out attacks on sites visited by compromised computers. Krebs on Security reported today that the Advanced Power botnet has been...

Xemra Botnet Remote Code Execution

Exploit for php platform in category remote exploits Exploit Title: Xemra Botnet Remote Code Execution Vulnerability Date: 13.12.2013 Exploit Author: GalaxyAndroid Vendor Homepage: unkn0wn Software Link: http://www.hackreports.com/2012/07/download-zemra-botnet-ddos-attack.html Version: unknown...

Cythosia 2.x Botnet (C2 Web Panel) - SQL Injection

Cythosia 2.x Botnet C2 Web Panel - SQL Injection Exploit Title: Cythosia Botnet SQL-Injection Vulnerability Date: 11.12.2013 Exploit Author: GalaxyAndroid Vendor Homepage: unkn0wn Application Screenshots http://www.xylibox.com/2012/08/cythosia-botnet-vnloader.html Version: 2.x Tested on: Windows ...

Cythosia Botnet SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Cythosia Botnet SQL-Injection Vulnerability Date: 24.11.2013 Exploit Author: GalaxyAndroid Vendor Homepage: unkn0wn Application Screenshots http://www.xylibox.com/2012/08/cythosia-botnet-vnloader.html Software Link:...

Cythosia 2.x Botnet (C2 Web Panel) - SQL Injection

Exploit Title: Cythosia Botnet SQL-Injection Vulnerability Date: 11.12.2013 Exploit Author: GalaxyAndroid Vendor Homepage: unkn0wn Application Screenshots http://www.xylibox.com/2012/08/cythosia-botnet-vnloader.html Version: 2.x Tested on: Windows 7 with Xampp greets goes to: ChrisKSK, Protestant...

64-Bit Zeus Banking Trojan Communicates Over Tor Network

The infamous Zeus banking Trojan has gone 64-bit. But why? Researchers at Kaspersky Lab’s Global Research and Analysis Team spotted a new version of the malware that behaves much like its 32-bit contemporaries: it too uses Web injects to steal banking credentials to drain online accounts, steal...

Alleged Skynet Botnet creator arrested in Germany

None...

Microsoft's Digital Crimes Unit successfully disrupted the ZeroAccess Botnet

None...

microsoft disrupts zeroaccess botnet

Microsoft’s crusade against botnets raged on yesterday as the Redmond, Wash., computer giant and a coalition of law enforcement agencies and Internet security companies disrupted the notorious ZeroAccess botnet. ZeroAccess, or Sirefef as Microsoft likes to call it, is a malware platform that...

Pony Botnet Controller Has 2 Million Stolen, Weak Passwords

So what’s worse: Finding two million passwords harvested by a botnet, or learning that most of the stolen passwords are terribly weak? Researchers at Trustwave found another Pony botnet controller recently that oversees a trove of close to two million website logins, email account credentials, as...