Lucene search
K

114 matches found

Microsoft Malware Protection
Microsoft Malware Protection
added 2021/08/11 4:0 p.m.46 views

7 ways to harden your environment against compromise

Here at the global Microsoft Compromise Recovery Security Practice CRSP, we work with customers who have experienced disruptive security incidents to restore trust in identity systems and remove adversary control. During 2020, the team responded to many incidents involving ransomware and the...

Exploits0
Microsoft Secure
Microsoft Secure
added 2021/08/11 4:0 p.m.41 views

7 ways to harden your environment against compromise

Here at the global Microsoft Compromise Recovery Security Practice CRSP, we work with customers who have experienced disruptive security incidents to restore trust in identity systems and remove adversary control. During 2020, the team responded to many incidents involving ransomware and the...

Exploits0
The Hacker News
The Hacker News
added 2021/07/26 10:13 a.m.107 views

Microsoft Warns of LemonDuck Malware Targeting Windows and Linux Systems

An infamous cross-platform crypto-mining malware has continued to refine and improve upon its techniques to strike both Windows and Linux operating systems by setting its sights on older vulnerabilities, while simultaneously latching on to a variety of spreading mechanisms to maximize the...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/06/03 5:1 p.m.642 views

Necro Python Malware Upgrades With New Exploits and Crypto Mining Capabilities

New upgrades have been made to a Python-based "self-replicating, polymorphic bot" called Necro in what's seen as an attempt to improve its chances of infecting vulnerable systems and evading detection. "Although the bot was originally discovered earlier this year, the latest activity shows numero...

10CVSS10AI score0.9957EPSS
Exploits103
Imperva Blog
Imperva Blog
added 2021/04/30 12:12 p.m.37 views

Benefits of Building a Multi-prong Mousetrap for WAF Policies with ML

The reason behind buying a market-leading Web Application Firewall WAF is to protect your website and web applications from malicious attacks, plus complying with industry or regional data and privacy standards. In addition to the typical OWASP Top 10 vulnerabilities, WAFs need to address a litan...

7.1AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2021/03/16 8:15 p.m.52 views

Securing Containers and Kubernetes-Orchestrated Environments

In a recent Black Hat webcast, “Securing Containers and Kubernetes-Orchestrated Environments,” sponsored by VMware Carbon Black, guest speakers Sheila A. Berta, Offensive Security Specialist, Dreamlab Technologies and Haim Helman, CTO, VMware Carbon Black App Security, VMware Security Business...

Exploits0
Malwarebytes
Malwarebytes
added 2021/03/09 7:59 p.m.242 views

Microsoft Exchange attacks cause panic as criminals go shell collecting

Only last week we posted a blog about multiple zero-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. Seeing how this disclosure came with a patch being available, under normal circumstances you would see some companies update...

7.5CVSS10AI score0.99999EPSS
Exploits63
HackRead
HackRead
added 2021/02/24 9:2 p.m.46 views

Botnet Abusing Bitcoin Blockchain To Evade Detection

By Deeba Ahmed Cybercriminals are abusing Bitcoin transactions to carry out illegal crypto mining operations while staying under the radar. This is a post from HackRead.com Read the original post: Botnet Abusing Bitcoin Blockchain To Evade Detection...

2AI score
Exploits0
ThreatPost
ThreatPost
added 2021/02/24 3:31 p.m.34 views

Nvidia's Anti-Cryptomining GPU Chip May Not Discourage Attacks

Nvidia, the chip company known for its gaming-friendly graphical processing units GPUs, said that its hotly anticipated GeForce RTX 3060 chipset, launching Thursday, has an added bonus of thwarting crypto-mining. Experts applaud the effort, but are skeptical the move will take the bullseye off th...

Exploits0References11
Veracode
Veracode
added 2021/02/04 5:38 a.m.11 views

Malicious Package

jquerry is a malicious package. The index.js file downloads and executes a crypto mining script. However, the script is not executed upon installation...

2AI score
Exploits0
Node.js
Node.js
added 2021/02/03 3:34 p.m.39 views

Malicious Package

Overview All versions of jquerry contain malicious code. The index.js file appears to download and execute a crypto mining script. The file is not run upon installation - the package needs to be required or the index.js run manually. Recommendation Any computer that has this package installed or...

7AI score
Exploits0Affected Software1
Hacker One
Hacker One
added 2021/01/31 11:18 a.m.12 views

MTN Group: RXSS - http://macademy.mtnonline.com

The page located at http://macademy.mtnonline.com suffers from a Cross-site Scripting XSS vulnerability. XSS is a vulnerability that occurs when user input is unsafely encorporated into the HTML markup inside of a webpage. When not properly escaped an attacker can inject malicious JavaScript that...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/21 2:24 p.m.92 views

MrbMiner Crypto-Mining Malware Links to Iranian Software Company

A relatively new crypto-mining malware that surfaced last year and infected thousands of Microsoft SQL Server MSSQL databases has now been linked to a small software development company based in Iran. The attribution was made possible due to an operational security oversight, said researchers fro...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/21 2:24 p.m.6 views

MrbMiner Crypto-Mining Malware Links to Iranian Software Company

A relatively new crypto-mining malware that surfaced last year and infected thousands of Microsoft SQL Server MSSQL databases has now been linked to a small software development company based in Iran. The attribution was made possible due to an operational security oversight, said researchers fro...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/19 10:59 a.m.88 views

FreakOut! Ongoing Botnet Attack Exploiting Recent Linux Vulnerabilities

An ongoing malware campaign has been found exploiting recently disclosed vulnerabilities in network-attached storage NAS devices running on Linux systems to co-opt the machines into an IRC botnet for launching distributed denial-of-service DDoS attacks and mining Monero cryptocurrency. The attack...

10CVSS0.99783EPSS
Exploits16
Imperva Blog
Imperva Blog
added 2021/01/14 5:4 p.m.260 views

Python Cryptominer Botnet Quickly Adopts Latest Vulnerabilities

Over the last few days, Imperva researchers have monitored the emergence of a new botnet, one whose primary activity is performing different DDoS attacks and mining cryptocurrency. It also acts as a worm trying to extend its reach by scanning specific subnets and ports and using different remote...

10CVSS0.2AI score0.99783EPSS
Exploits16
The Hacker News
The Hacker News
added 2020/12/02 9:20 a.m.4 views

Multiple Botnets Exploiting Critical Oracle WebLogic Bug — PATCH NOW

Multiple botnets are targeting thousands of publicly exposed and still unpatched Oracle WebLogic servers to deploy crypto miners and steal sensitive information from infected systems. The attacks are taking aim at a recently patched WebLogic Server vulnerability, which was released by Oracle as...

10CVSS7.8AI score0.99997EPSS
Exploits43
The Hacker News
The Hacker News
added 2020/11/24 2:56 p.m.35 views

Stantinko Botnet Now Targeting Linux Servers to Hide Behind Proxies

An adware and coin-miner botnet targeting Russia, Ukraine, Belarus, and Kazakhstan at least since 2012 has now set its sights on Linux servers to fly under the radar. According to a new analysis published by Intezer today and shared with The Hacker News, the trojan masquerades as HTTPd, a commonl...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2020/11/24 2:56 p.m.5 views

Stantinko Botnet Now Targeting Linux Servers to Hide Behind Proxies

An adware and coin-miner botnet targeting Russia, Ukraine, Belarus, and Kazakhstan at least since 2012 has now set its sights on Linux servers to fly under the radar. According to a new analysis published by Intezer today and shared with The Hacker News, the trojan masquerades as HTTPd, a commonl...

5.8AI score
Exploits0
ThreatPost
ThreatPost
added 2020/11/06 5:34 p.m.1622 views

Gitpaste-12 Worm Targets Linux Servers, IoT Devices

Researchers have uncovered a new worm targeting Linux based x86 servers, as well as Linux internet of things IoT devices that are based on ARM and MIPS CPUs. Of note, the malware utilizes GitHub and Pastebin for housing malicious component code, and has at least 12 different attack modules...

10CVSS10AI score0.99999EPSS
Exploits48References12
Rows per page
Query Builder