CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ThreatPost•added 2012/01/31 3:28 p.m.•8 views

Kelihos Botnet Resurfaces

UPDATE–The Kelihos botnet, which researchers at Kaspersky Lab and Microsoft disrupted last fall by sinkholing the control channel, has sprung back to life and is using only slightly different versions of the original malware and controller list. The rejuvenation of the botnet illustrates the...

6.8AI score

Exploits0References6

ThreatPost•added 2012/01/30 3:49 p.m.•12 views

Attackers Moving Zeus Servers to Former Soviet Union TLD

The groups of attackers that employ the Zeus toolkit for their scams and malware campaigns have long used sites in the .ru Russian TLD as homes for their botnet controllers. Security researchers and law enforcement agencies have had a difficult time making headway in getting these domains taken...

1.7AI score

ThreatPost•added 2012/01/24 5:32 p.m.•18 views

Microsoft Adds Kelihos Botnet Operator To Civil Complaint

A Russian man was added to the list of defendants in a civil complaint filed by Microsoft at the operators of the Kelihos botnet. In an amended complaint filed in U.S. District Court on Monday, the company said that Andrey Sabelnikov controlled Kelihos using 21 Internet domains bought from a...

1.4AI score

ThreatPost•added 2012/01/17 8:26 p.m.•13 views

Koobface Gang Apparently Hiding in Plain Sight

The individuals allegedly responsible for wreaking havoc on Facebook with the infamous Koobface botnet are living lavishly, blatantly flaunting their ill-gotten gains and taking little precautions to cover their tracks. Their locations, travels, business ventures, social media personas, Internet...

0.2AI score

The Hacker News•added 2012/01/12 9:2 p.m.•7 views

Microsoft launching Real Time Hosted Threat Intelligence Feed

Microsoft launching Real Time Hosted Threat Intelligence Feed Microsoft is to offer a real-time intelligence feed of botnet and e-crime data to public and private sector subscribers, according to security company Kaspersky. Currently, Microsoft is testing a real-time feed to distribute informatio...

6.6AI score

ThreatPost•added 2012/01/11 8:10 p.m.•18 views

Microsoft Readying Real Time Hosted Threat Intelligence Feed

New York City – Microsoft has proven that it can take down huge, global botnets like Kelihos, Rustock and Waldec. Now the company is ready to start making the data it acquires in those busts available to governments, law enforcement and customers as a real time threat intelligence feed...

6.9AI score

ThreatPost•added 2012/01/09 7:10 p.m.•10 views

New Zeus Variant Could Mean 'Gameover' for Unsuspecting Users

The FBI issued a warning late last week about ‘Gameover,’ a variant of the Zeus malware that can steal usernames and passwords. The malware is being propagated through spam e-mails purporting to come from the National Automated Clearing House Association NACHA, the Federal Reserve Bank and the...

1.8AI score

The Hacker News•added 2012/01/06 9:9 p.m.•6 views

Hackers selling cheap BOTNETs and DDOS on forums

Hackers selling cheap BOTNETs and DDOS on forums The Internet has revolutionized shopping around the world. Security researchers F-Secure reported recently in a post that hackers are Selling Cheap DDOS services on Various Forums. Hackers are offering services like distributed denial of service...

6.6AI score

ThreatPost•added 2011/12/23 8:30 p.m.•9 views

Israeli Firm Denies Gear Sold To Iran Is For Surveillance

An Israeli technology firm says it it looking into accusations made in a published report by Bloomberg that its software was sold to Iran, even as it denies claims in the report that its technology can be used for surveillance. The Israeli firm Allot Communications issued a statement on Friday th...

ThreatPost•added 2011/12/05 7:13 p.m.•7 views

Russian Parliamentary Election Marred by DDoS Campaign

Yesterday was election day in Russia, and the occasion brought with it a coordinated campaign reportedly designed to silence some specific groups. A report from GlobalVoices.org details a massive wave of DDoS attacks against blogging platforms, election watchdog Websites, and various independent...

0.1AI score

Exploits0References2

Nmap•added 2011/10/31 6:11 p.m.•130 views

dns-zeustracker NSE Script

Checks if the target IP range is part of a Zeus botnet by querying ZTDNS @ abuse.ch. Please review the following information before you start to scan: Example Usage nmap -sn -PN --script=dns-zeustracker Script Output Host script results: | dns-zeustracker: | Name IP SBL ASN Country Status Level...

10CVSS9.2AI score0.99448EPSS

Exploits33

ThreatPost•added 2011/10/21 11:50 a.m.•102 views

JBoss Worm Exploiting Old Bug to Infect Unpatched Servers

There is a new worm circulating right now that is compromising servers running older versions of the JBoss Application Server and then adding them to a botnet. The worm also attempts to install a remote access tool in order to give the attacker control over the newly infected server. The worm has...

5CVSS0.5AI score0.79415EPSS

Exploits28References5

ThreatPost•added 2011/10/11 12:2 p.m.•13 views

P2P Version of Zeus Botnet Appears

A new version of the Zeus malware has appeared, and this does not seem to be a minor upgrade, but a major custom version of the Trojan, which now sports a P2P capability that does away with the use of the domain-generation algorithm used in earlier versions and instead uses a hardcoded list of IP...

7.4AI score

The Hacker News•added 2011/10/08 7:58 p.m.•2 views

Optima DDOS 10a Botnet leaked on Underground Forums

Optima DDOS 10a botnet leaked on Underground Forums On underground forums "Optima DDOS 10a Botnet " full version posted for all to download and use. Complete new version of the acclaimed DDoS bot Optima Darkness. In this new version 10a according to the author was raised in secrecy bot system and...

6.9AI score

The Hacker News•added 2011/10/08 7:58 p.m.•12 views

Optima DDOS 10a Botnet leaked on Underground Forums

Optima DDOS 10a botnet leaked on Underground Forums On underground forums "Optima DDOS 10a Botnet" full version posted for all to download and use. Complete new version of the acclaimed DDoS bot Optima Darkness. In this new version 10a according to the author was raised in secrecy bot system and...

6.6AI score

ThreatPost•added 2011/10/05 4:0 p.m.•7 views

Fed Seeks Industry Standard for Botnet Mitigation

The Departments of Commerce and Homeland Security met with various other government agencies and private-sector leaders yesterday to discuss the need for a code of conduct for detecting, mitigating, and otherwise dealing with botnets. The invitational meeting was hosted by the Center for Strategi...

0.2AI score