Lucene search
K

30 matches found

HackRead
HackRead
added 2026/06/08 1:40 p.m.17 views

Silent Ransom Group Uses Fast Flux Botnet to Hide Law Firm Leak Sites

Cybersecurity firm Resecurity reports Silent Ransom Group is using a fast flux botnet to hide data leak sites while targeting law firms with theft and vishing...

5.5AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/07 1:40 p.m.18 views

CISA and FBI Warn Fast Flux is Powering Resilient Malware, C2, and Phishing Networks

Cybersecurity agencies from Australia, Canada, New Zealand, and the United States have published a joint advisory about the risks associated with a technique called fast flux that has been adopted by threat actors to obscure a command-and-control C2 channel. "'Fast flux' is a technique used to...

7.1AI score
Exploits0
HackRead
HackRead
added 2025/04/04 11:36 a.m.10 views

NSA and Global Allies Declare Fast Flux a National Security Threat

NSA and global cybersecurity agencies warn fast flux DNS tactic is a growing national security threat used in phishing, botnets, and ransomware...

7.4AI score
Exploits0
CISA
CISA
added 2025/04/03 12:0 p.m.4 views

NSA, CISA, FBI, and International Partners Release Cybersecurity Advisory on “Fast Flux,” a National Security Threat

Today, CISA—in partnership with the National Security Agency NSA, Federal Bureau of Investigation FBI, Australian Signals Directorate’s Australian Cyber Security Centre ASD’s ACSC, Canadian Centre for Cyber Security CCCS, and New Zealand’s National Cyber Security Centre NCSC-NZ—released joint...

6.9AI score
Exploits0References2
The Hacker News
The Hacker News
added 2024/12/06 7:3 a.m.8 views

Hackers Leveraging Cloudflare Tunnels, DNS Fast-Flux to Hide GammaDrop Malware

The threat actor known as Gamaredon has been observed leveraging Cloudflare Tunnels as a tactic to conceal its staging infrastructure hosting a malware called GammaDrop. The activity is part of an ongoing spear-phishing campaign targeting Ukrainian entities since at least early 2024 that's design...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/23 6:35 a.m.46 views

Massive Ad Fraud Scheme Targeted Over 11 Million Devices with 1,700 Spoofed Apps

Researchers have shut down an "expansive" ad fraud scheme that spoofed more than 1,700 applications from 120 publishers and impacted roughly 11 million devices. "VASTFLUX was a malvertising attack that injected malicious JavaScript code into digital ad creatives, allowing the fraudsters to stack...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/23 6:35 a.m.3 views

Massive Ad Fraud Scheme Targeted Over 11 Million Devices with 1,700 Spoofed Apps

Researchers have shut down an "expansive" ad fraud scheme that spoofed more than 1,700 applications from 120 publishers and impacted roughly 11 million devices. "VASTFLUX was a malvertising attack that injected malicious JavaScript code into digital ad creatives, allowing the fraudsters to stack...

6.7AI score
Exploits0
hivepro
hivepro
added 2022/12/22 10:35 a.m.16 views

Gamaredon APT cyber feud strikes Ukrainian entities

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary One of the most ubiquitous, intrusive, consistently active, and laser-focused APTs targeting Ukraine in cyberspace is the Gamaredon group, also known as the Shuckworm. Gamaredon Group has employed fast...

1.7AI score
Exploits0
ThreatPost
ThreatPost
added 2019/09/09 7:2 p.m.51 views

PsiXBot Adds PornModule, Google DNS Service to Its Arsenal

The PsiXBot malware has made a few changes in recent weeks, including implementing Google’s DNS over HTTPS DoH and adding the blackmail-ready “PornModule” to its bag of tricks. PsiXBot is a multi-use Windows malware that has a range of capabilities, including keylogging, stealing passwords and...

1.3AI score
Exploits0References5
Kitploit
Kitploit
added 2018/12/08 8:55 p.m.120 views

Malcom - Malware Communications Analyzer

Malcom is a tool designed to analyze a system's network communication using graphical representations of network traffic, and cross-reference them with known malware sources. This comes handy when analyzing how certain malware species try to communicate with the outside world. What is Malcom?...

6.8AI score
Exploits0References10
Akamai Blog
Akamai Blog
added 2018/07/23 12:24 p.m.31 views

ARE YOU LEAVING YOUR SECURITY BACKDOOR OPEN?

Gartner predicts that enterprises will spend $96 Billion on cyber security this year, up 8% from their spend in 2017. That's a big chunk of change. To put it into context, that spend is in the same ballpark as the individual GDPs of Venezuela, Sri Lanka and Puerto Rico in 2018. Despite this,...

6.8AI score
Exploits0
Talos Blog
Talos Blog
added 2018/02/28 7:16 a.m.43 views

CannibalRAT targets Brazil

This post was authored by Warren Mercer and Vitor Ventura Introduction Talos has identified two different versions of a RAT, otherwise known as a remote access trojan, that has been written entirely in Python and is wrapped into a standalone executable. The RAT is impacting users of a Brazilian...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/12/18 6:45 p.m.16 views

A week in security (December 11 – December 17)

Last week we explained what fast flux is and how it's being abused, we showed you all kinds of Bitcoin-related scams, presented a video recording of a tech support scammer trying to sell free software, and pointed out some free software to keep an eye on your Internet traffic. We also informed yo...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/12/12 4:0 p.m.17 views

A state of constant uncertainty or uncertain constancy? Fast flux explained

Last August, WireX made headlines. For one thing, it was dubbed the first-known DDoS botnet that used the Android platform. For another, it used a technique that—for those who have been around in the industry for quite a while now—rung familiar in the ears: fast flux. In the context of...

7.4AI score
Exploits0
Akamai Blog
Akamai Blog
added 2017/10/19 9:0 p.m.44 views

Fast Flux Botnet: Research Results

Just like that, another Akamai Edge has come and gone. If you were able to join us this year, I hope you had a chance to stop by my presentation on Threat Intelligence Insights: An In-Depth Analysis of a Fast Flux Botnet. In short, Fast Flux is a DNS technique used by botnets to hide various type...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/10/16 7:0 p.m.52 views

A week in security (October 9 – October 15)

Last week on the Labs blog, we talked about GDPR as part of our series in the National Cyber Security Awareness Month NCSAM. We also discussed a new method for phishing Apple ID passwords and the possible ramifications. We analyzed the malvertising chain due to a script that was found on popular...

6.5AI score
Exploits0
ThreatPost
ThreatPost
added 2016/07/18 1:26 p.m.200 views

Researchers Crack Furtim, SFG Malware Connection

New research is challenging what security researchers know about Furtim, a new malware strain that has been compared to Stuxnet because of its believed targeting of industrial controls in energy companies. According to security experts at Damballa, Furtim and the recently discovered SFG malware a...

7.2CVSS8.5AI score0.87042EPSS
Exploits60References4
n0where
n0where
added 2015/03/25 6:7 p.m.54 views

Malware Communication Analyzer: Malcom

Malcom is a tool designed to analyze a system’s network communication using graphical representations of network traffic, and cross-reference them with known malware sources. This comes handy when analyzing how certain malware species try to communicate with the outside world. Malcom can help you...

7.1AI score
Exploits0References5
The Hacker News
The Hacker News
added 2015/03/04 11:46 p.m.16 views

Angler Exploit Kit Uses Domain Shadowing technique to Evade Detection

The world’s infamous Angler Exploit Kit has become the most advanced, much more powerful and the best exploit kit available in the market, beating the infamous BlackHole exploit kit, with a host of exploits including zero-days and a new technique added to it. Angler Exploit Kit's newest technique...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2014/10/09 2:17 p.m.10 views

Rovnix Variant Surfaces With New DGA

Researchers have unearthed a new version of the Rovnix malware that has a couple of additional features, including a new domain generation algorithm and a secure transmission channel for communicating with the command-and-control servers. Rovnix is a malware variant that often has been distribute...

1.2AI score
Exploits0References2
Rows per page
Query Builder