FBI Deletes PlugX Malware from 4,250 Hacked Computers in Multi-Month Operation

The U.S. Department of Justice DoJ on Tuesday disclosed that a court-authorized operation allowed the Federal Bureau of Investigation FBI to delete PlugX malware from over 4,250 infected computers as part of a "multi-month law enforcement operation." PlugX, also known as Korplug, is a remote acce...

French Police Remotely Removed RETADUP Malware from 850,000 Infected PCs

The French law enforcement agency, National Gendarmerie, today announced the successful takedown of one of the largest wide-spread RETADUP botnet malware and how it remotely disinfected more than 850,000 computers worldwide with the help of researchers. Earlier this year, security researchers at...

French Police Remotely Removed RETADUP Malware from 850,000 Infected PCs

The French law enforcement agency, National Gendarmerie, today announced the successful takedown of one of the largest wide-spread RETADUP botnet malware and how it remotely disinfected more than 850,000 computers worldwide with the help of researchers. Earlier this year, security researchers at...

Europe's Cybersecurity Agency Gears Up for War on Botnets !

The European Network and Information Security Agency ENISA, Europe's Cyber security agency, issued a report focused on botnets this week titled, "Botnets: Measurement, Detection, Disinfection and Defence." The report discusses the reliability of botnet size estimates and provides recommendations...

Microsoft Windows 32-bit Platforms Unspecified vulnerabilities

This host is prone to multiple unspecified vulnerabilities. OpenVAS Vulnerability Test $Id: gbmswindowsstuxnetunspecifiedvuln.nasl 7172 2017-09-18 11:07:34Z cfischer $ Microsoft Windows 32-bit Platforms Unspecified vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone Network...

Fake SMTP/FTP Server Detection (possible backdoor)

Although this service answers with 3 digit ASCII codes like FTP, SMTP or NNTP servers, it sends back different codes when several NOOP commands are sent in a row. This is probably a backdoor; in this case, your system is compromised and an attacker can control it remotely. C Tenable Network...

Malware Payload Code detection

The remote port seems to be sending the payload of a malware. This is used by some worms when spreading by infecting other hosts. The system is probably infected by a worm or a Trojan horse. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. This script was written by Michel Arboi Many thanks t...

LiveJournal - Cleanhtml.pl HTML Injection

LiveJournal - Cleanhtml.pl HTML Injection source: https://www.securityfocus.com/bid/15990/info LiveJournal is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

Bugbear.B web backdoor

Your system seems to be infected by the Bugbear.B virus its backdoor has been detected on port 81. More information: http://www.f-secure.com/v-descs/bugbearb.shtml OpenVAS Vulnerability Test $Id: bugbearb.nasl 7165 2017-09-18 08:57:44Z cfischer $ Description: Bugbear.B web backdoor Authors:...

Bugbear.B web backdoor

Your system seems to be infected by the Bugbear.B virus its backdoor has been detected on port 81. SPDX-FileCopyrightText: 2005 StrongHoldNet Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...