Millions of WordPress sites exploitable for DDoS Attacks using Pingback mechanism

Distributed Denial of Service attacks have increased in scale, intensity and frequency. The wide range of motives for these attacks political , criminal, or social makes every merchant or organization with an online presence a potential target. Over the weekend Incapsula mitigated a unique DDoS...

Millions of WordPress sites exploitable for DDoS Attacks using Pingback mechanism

Distributed Denial of Service attacks have increased in scale, intensity and frequency. The wide range of motives for these attacks political , criminal, or social makes every merchant or organization with an online presence a potential target. Over the weekend Incapsula mitigated a unique DDoS...

More Malware Showing Up as Fake SourceForge Web Sites

Malware developers continue to clone SourceForge Web sites that appear to offer the source code for popular gaming software but are actually peddling malicious code tied to the ZeroAccess Trojan. Julien Sobrier, a security researcher for San Jose-based cloud security provider Zscaler, on Tuesday...

Customized Zeus Trojan Crimeware Marketed Over Facebook

The secrecy of underground forums where financial malware and crimeware kits are traded is well guarded, to the point that few are able to penetrate them without some kind of internal sponsor. Here, criminals value their privacy as much as those from whom they steal. That’s what makes a recent...

Who Needs a Botnet when you have a 4 Gbps DDoS Cannon?

In recent months the DDoS world has shifted from complex small scale Botnet attacks to much larger network based DDoS attacks, perpetrated largely by hijacked web servers. How many of these hijacked servers are out there remains to be seen. However, Incapsula recently got a very good idea of just...

Anonymous #OpIsrael, cyber crime and assumptions on state-sponsored interference

Last April 7th the Anonymous collective hit the Israeli networks with a huge as historic offensive, for the first time an independent group of hackers declared war to a Governments to protest against its policy. Many web sites of the country were hit by DDoS attacks, the data on the event reporte...

Hackers Using Brute-Force Attacks to Harvest WordPress Sites

Months of distributed denial of service attacks against major U.S. banks have evolved in magnitude and ferocity causing service disruptions for online banking customers. They’ve also shown the way for other attackers to adapt and evolve techniques used in those attacks. Apparently, someone is...

WordPress Sites Targeted by Mass Brute-force Botnet Attack

US-CERT is aware of an ongoing campaign targeting the content management software WordPress, a free and open source blogging tool and web publishing platform based on PHP and MySQL. All hosting providers offering WordPress for web content management are potentially targets. Hackers reportedly are...

Massive Brute-force attack Targets Wordpress sites worldwide

A large distributed brute force attack against WordPress sites is understood to be occurring. A large botnet with more than 90,000 servers is attempting to log in by cycling through different usernames and passwords. According to a blog update on IXWebHosting, they are currently experiencing issu...

Massive Brute-force attack Targets Wordpress sites worldwide

A large distributed brute force attack against WordPress sites is understood to be occurring. A large botnet with more than 90,000 servers is attempting to log in by cycling through different usernames and passwords. According to a blog update on IXWebHosting, they are currently experiencing issu...

Carberp botnet developers team arrested in Russia

Cybercriminals, underground hacking communities, hacker's market and Exploit packs.... Russian cyberspace is well known for such crazy hacking stuff. Recently, the original Carberp botnet developer ring that stole millions from bank accounts worldwide has been arrested. According to a report from...

Carberp botnet developers team arrested in Russia

Cybercriminals, underground hacking communities, hacker's market and Exploit packs.... Russian cyberspace is well known for such crazy hacking stuff. Recently, the original Carberp botnet developer ring that stole millions from bank accounts worldwide has been arrested. According to a report from...

Clues About Flashback Creator Come Together

Nearly a year since the Flashback Trojan surfaced and ultimately infected more than 600,000 Apple OS X computers, the author of the malware may haven been discovered. After some sleuthing by security bloggers Brian Krebs over the past year – documented today on the Krebs on Security blog – the...

Russian underground vSkimmer Botnet targeting payment world

A new botnet emerged from underground and is menacing payment world, the cyber threat dubbed vSkimmer come from Russia according revelation of McAfee security firm. The security expert Chintan Shah wrote on a blog post that during monitoring of Russian underground forum found a discussion about a...

Russian underground vSkimmer Botnet targeting payment world

A new botnet emerged from underground and is menacing payment world, the cyber threat dubbed vSkimmer come from Russia according revelation of McAfee security firm. The security expert Chintan Shah wrote on a blog post that during monitoring of Russian underground forum found a discussion about a...

Chameleon Botnet Stealing $6M a Month in Fraudulent Ad Clicks

The Chameleon botnet continues to steal millions of dollars from online advertisers through fraudulent clicks made by malware. First discovered in late February, researchers at British-based Web analytics firm spider.io say more than 120,000 Microsoft Windows machines — the overwhelming majority...

Exposed Devices Used as Botnet to Scan Internet

A controversial Internet scanning project has come under fire for illegally accessing and running code on remote machines. The Internet Census 2012 project, revealed Sunday in a post to Seclists.org, discovered 420,000 embedded devices accessible using default credentials. The unnamed researcher...

Ramnit Malware Back and Better at Avoiding Detection

The Ramnit malware family has been given a facelift with new anti-detection capabilities, a troubleshooting module, as well as enhanced encryption and malicious payloads. Tim Liu of the Microsoft Malware Protection Center said Ramnet resurfaced late last year and its keepers had stripped out all ...

Ten Major Cybercrime Busts

Politicians, security researchers and others involved in the fight against cybercrime often compare the situation to efforts to combat traditional organized crime. Some of the tricks and tactics are comparable, and so are the motives, but there’s one major difference between the two groups:...

How Much Does A Botnet Cost?

The cost of a botnet is contingent largely upon the physical location of the malware-infected computers inside of it. Therefore, a botnet containing only American or European machines is worth more than one with machines from less prosperous nations. Security researcher Dancho Danchev recently...