Lucene search
K

24 matches found

Securelist
Securelist
added 2026/05/28 6:55 a.m.10 views

Pirates in the crosshairs: how one cybercrime gang has been infecting book, movie, and TV show fans for years

Introduction In late April 2026, a client reached out to us for incident response support after discovering a miner running on users' computers. We later discovered that the malware was being distributed via illegal movie and TV show streaming sites. The infection chain leveraged a fake update fo...

6.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/12/20 8:39 a.m.6 views

Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack

The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish malicious versions to the official package registry with cryptocurrency mining malware. Following the...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/05/30 2:24 p.m.41 views

RedTail Crypto-Mining Malware Exploiting Palo Alto Networks Firewall Vulnerability

The threat actors behind the RedTail cryptocurrency mining malware have added a recently disclosed security flaw impacting Palo Alto Networks firewalls to its exploit arsenal. The addition of the PAN-OS vulnerability to its toolkit has been complemented by updates to the malware, which now...

10CVSS10AI score0.99999EPSS
Exploits453
Talos Blog
Talos Blog
added 2023/09/07 6:0 p.m.20 views

A secondhand account of the worst possible timing for a scammer to strike

Welcome to this weeks edition of the Threat Source newsletter. Up until last week, I had never considered the timing of a scam to be important. Im so used to just swiping away emails or text messages at random times during the day that Id never considered what would happen if an adversary happene...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/23 7:30 a.m.58 views

New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices

Internet-facing Linux systems and Internet of Things IoT devices are being targeted as part of a new campaign designed to illicitly mine cryptocurrency. "The threat actors behind the attack use a backdoor that deploys a wide array of tools and components such as rootkits and an IRC bot to steal...

9.8CVSS9.9AI score0.69663EPSS
Exploits1
hivepro
hivepro
added 2022/09/29 6:56 a.m.44 views

Vulnerable Atlassian Confluence Servers utilized to drop Crypto Miners

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The Atlassian Confluence Servers CVE-2022-26134, an unauthenticated remote code execution RCE vulnerability that was recently patched, is being used by adversaries to deploy cryptocurrency mining malware...

7.5CVSS5.1AI score0.99999EPSS
Exploits75
The Hacker News
The Hacker News
added 2021/12/08 6:33 a.m.51 views

Warning: Yet Another Bitcoin Mining Malware Targeting QNAP NAS Devices

Network-attached storage NAS appliance maker QNAP on Tuesday released a new advisory warning of a cryptocurrency mining malware targeting its devices, urging customers to take preventive steps with immediate effect. "A bitcoin miner has been reported to target QNAP NAS. Once a NAS is infected, CP...

9.8CVSS0.7AI score0.03042EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/10/23 4:42 a.m.39 views

Popular NPM Package Hijacked to Publish Crypto-mining Malware

The U.S. Cybersecurity and Infrastructure Security Agency on Friday warned of crypto-mining and password-stealing malware embedded in "UAParser.js," a popular JavaScript NPM library with over 6 million weekly downloads, days after the NPM repository moved to get rid of three rogue packages that...

7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/04/30 12:12 p.m.37 views

Benefits of Building a Multi-prong Mousetrap for WAF Policies with ML

The reason behind buying a market-leading Web Application Firewall WAF is to protect your website and web applications from malicious attacks, plus complying with industry or regional data and privacy standards. In addition to the typical OWASP Top 10 vulnerabilities, WAFs need to address a litan...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/21 2:24 p.m.92 views

MrbMiner Crypto-Mining Malware Links to Iranian Software Company

A relatively new crypto-mining malware that surfaced last year and infected thousands of Microsoft SQL Server MSSQL databases has now been linked to a small software development company based in Iran. The attribution was made possible due to an operational security oversight, said researchers fro...

1.1AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2020/01/20 2:9 p.m.49 views

Defend Yourself Now and in the Future Against Mobile Malware

The world has gone mobile and the US is leading the way. It’s estimated that that the number of smartphone users alone topped 257 million in the States in 2018. That means three-quarters 74% of households now boast at least one mobile device. And in this new digital world, it’s mobile application...

Exploits0
Talos Blog
Talos Blog
added 2019/09/17 8:9 a.m.718 views

Cryptocurrency miners aren’t dead yet: Documenting the voracious but simple “Panda”

By Christopher Evans and David Liebenberg. Executive summary A new threat actor named "Panda" has generated thousands of dollars worth of the Monero cryptocurrency through the use of remote access tools RATs and illicit cryptocurrency-mining malware. This is far from the most sophisticated actor...

10CVSS9.8AI score0.99999EPSS
Exploits118
Malwarebytes
Malwarebytes
added 2019/09/03 7:2 p.m.76 views

A week in security (August 26 – September 1)

Last week on Malwarebytes Labs, we analysed the Android xHelper trojan, we wondered why the Nextdoor app would send out letters on behalf of their customers, reported about a study that explores the clickjacking problem across top Alexa-ranked websites, wondered how to get the board to invest in...

0.7AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2019/02/01 3:45 p.m.137 views

TAU Threat Intelligence Notification: Shade Ransomware

Summary Recently there is a new wave of malicious spam campaign distributing Shade ransomware via sending malicious JavaScript attachments. The spam campaign was mainly targeting users from Russia, and the ransom note was written in both Russian and English. This variant of Shade ransomware will...

6.6AI score
Exploits0
ThreatPost
ThreatPost
added 2019/01/23 6:17 p.m.72 views

Monero: Cybercrime's Top Choice for Mining Malware

An academic analysis of cryptomining malware has determined that the Monero virtual currency XMR is “by far” the most popular cryptocurrency to mine among cybercriminals. And, it would appear that cryptomining as a criminal enterprise is unlikely to wane anytime soon. After examining approximatel...

0.5AI score
Exploits0References5
Akamai Blog
Akamai Blog
added 2018/08/22 4:55 p.m.63 views

How's that Security Back Door Doing? (Part 2)

In the first part of this blog post I wrote about how recursive DNS rDNS is an attack surface that many enterprises don't currently protect. Bad actors are exploiting that fact and developing advanced targeted threats that use DNS to bypass conventional security tools such as firewalls, secure we...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/06/18 5:0 p.m.45 views

A week in security (June 11 – June 17)

Last week on Malwarebytes Labs, we discussed how to protect the online privacy of children, we gave you a spring 2018 overview of exploit kits, rounded up the ongoing discussions about the VPNFilter malware, and discussed the struggles of UK law enforcement with modern-day cybercrime. Other news...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2018/06/14 3:10 p.m.402 views

Chinese Hackers Carried Out Country-Level Watering Hole Attack

Cybersecurity researchers have uncovered an espionage campaign that has targeted a national data center of an unnamed central Asian country in order to conduct watering hole attacks. The campaign is believed to be active covertly since fall 2017 but was spotted in March by security researchers fr...

9.3CVSS0.6AI score0.99945EPSS
Exploits33
HackRead
HackRead
added 2018/05/18 1:39 p.m.50 views

WinstarNssmMiner Monero mining malware crashes PC upon detection

By Waqas Another day, another Monero cryptocurrency mining malware hits unsuspected users worldwide This is a post from HackRead.com Read the original post: WinstarNssmMiner Monero mining malware crashes PC upon detection...

2.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/03/05 5:0 p.m.550 views

Week in security (February 26 – March 4)

Last week on Malwarebytes Labs, we explained how to protect your computer from malicious cryptomining, we gave an encryption 101 lesson using ShiOne ransomware as a case study, and we offered an explanation about SQL injection. We also released a report on the state of malicious cryptomining from...

7.5CVSS0.2AI score0.89618EPSS
Exploits19
Rows per page
Query Builder