Lucene search
K

18 matches found

HackRead
HackRead
added 2024/12/23 11:43 a.m.9 views

Supply Chain Attack Hits Rspack, Vant npm Packages with Monero Miner

Popular npm packages, Rspack and Vant, were recently compromised with malicious code. Learn about the attack, the impact, and how to protect your projects from similar threats...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/01/16 5:0 p.m.12 views

New Attacks Target Misconfigured Apache Applications with Monero Miner

Summary: A recently identified attack exploits misconfigurations in Apache Hadoop and Flink to deploy cryptocurrency miners within targeted environments. This attack stands out due to the attackers utilization of packers and rootkits to conceal the malware, adding an extra layer of complexity and...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/04 9:34 a.m.53 views

StripedFly Malware Operated Unnoticed for 5 Years, Infecting 1 Million Devices

An advanced strain of malware masquerading as a cryptocurrency miner has managed to fly the radar for over five years, infecting no less than one million devices around the world in the process. That's according to findings from Kaspersky, which has codenamed the threat StripedFly, describing it ...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/17 6:59 a.m.3 views

From Cryptojacking to DDoS Attacks: Diicot Expands Tactics with Cayosin Botnet

Cybersecurity researchers have discovered previously undocumented payloads associated with a Romanian threat actor named Diicot , revealing its potential for launching distributed denial-of-service DDoS attacks. "The Diicot name is significant, as it's also the name of the Romanian organized crim...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/04/17 2:0 a.m.16 views

Fake Chrome updates spread malware

Compromised websites are causing big headaches for Chrome users. A campaign running since November 2022 is using hacked sites to push fake web browser updates to potential victims. Researcher Rintaro Koike says this campaign has now expanded to also target those who speak Korean, Spanish, and...

6.4AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/20 11:44 a.m.85 views

This Cloud Botnet Has Hijacked 30,000 Systems to Mine Cryptocurrencies

The 8220 cryptomining group has expanded in size to encompass as many as 30,000 infected hosts, up from 2,000 hosts globally in mid-2021. "8220 Gang is one of the many low-skill crimeware gangs we continually observe infecting cloud hosts and operating a botnet and cryptocurrency miners through...

9.8CVSS0.2AI score0.99999EPSS
Exploits75
ThreatPost
ThreatPost
added 2021/10/13 8:17 p.m.97 views

FreakOut Botnet Turns DVRs Into Monero Cryptominers

Threat group FreakOut’s Necro botnet has developed a new trick: infecting Visual Tools DVRs with a Monero miner. Juniper Threat Labs researchers have issued a report detailing new activities from FreakOut, also known as Necro Python and Python.IRCBot. In late September, the team noticed that the...

10CVSS10AI score0.96598EPSS
Exploits20References8
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/12/13 1:32 p.m.38 views

This Week in Security News: December Patch Tuesday Updates and Retail Cyberattacks Set to Soar 20 Percent During 2019 Holiday Season

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about the threat campaign Waterbear and how it uses API hooking to evade security product detection. Also, read about December Patch...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2019/11/03 11:2 a.m.217 views

First Cyber Attack 'Mass Exploiting' BlueKeep RDP Flaw Spotted in the Wild

Cybersecurity researchers have spotted a new cyberattack that is believed to be the very first but an amateur attempt to weaponize the infamous BlueKeep RDP vulnerability in the wild to mass compromise vulnerable systems for cryptocurrency mining. In May this year, Microsoft released a patch for ...

10CVSS0.4AI score0.99999EPSS
Exploits123
Talos Blog
Talos Blog
added 2019/09/17 8:9 a.m.718 views

Cryptocurrency miners aren’t dead yet: Documenting the voracious but simple “Panda”

By Christopher Evans and David Liebenberg. Executive summary A new threat actor named "Panda" has generated thousands of dollars worth of the Monero cryptocurrency through the use of remote access tools RATs and illicit cryptocurrency-mining malware. This is far from the most sophisticated actor...

10CVSS9.8AI score0.99999EPSS
Exploits118
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/07/26 12:57 p.m.214 views

This Week in Security News: Unpatched Systems and Lateral Phishing

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about an attack against Elasticsearch that delivers backdoors as its payload. Additionally, read how cybercriminals are turning to...

0.6AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/06/07 1:5 p.m.90 views

This Week in Security News: Gray Alerts and Wormable Malware

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about the new wormable malware that’s dropping a Monero miner in web servers, networks and removable drivers. Also, read about the bes...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2018/09/05 5:48 p.m.205 views

Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild

It was only a matter of time before attacks were seen in the wild, and now it’s happened. A known threat actor has mounted a large cryptomining campaign using the recently disclosed Apache Struts 2 critical remote code-execution vulnerability. It uses a new malware designed for persistence and...

10CVSS9.9AI score0.99999EPSS
Exploits118References10
FireEye
FireEye
added 2018/06/28 4:0 p.m.424 views

RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique

Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...

9.3CVSS9.1AI score0.93165EPSS
Exploits39References5
FireEye
FireEye
added 2018/06/28 12:0 p.m.1659 views

RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique

Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...

9.3CVSS8.8AI score0.93165EPSS
Exploits39
The Hacker News
The Hacker News
added 2018/04/18 9:49 a.m.8047 views

Hackers Exploiting Drupal Vulnerability to Inject Cryptocurrency Miners

The Drupal vulnerability CVE-2018-7600, dubbed Drupalgeddon2 that could allow attackers to completely take over vulnerable websites has now been exploited in the wild to deliver malware backdoors and cryptocurrency miners. Drupalgeddon2, a highly critical remote code execution vulnerability...

9.8CVSS1.2AI score0.99993EPSS
Exploits91
The Hacker News
The Hacker News
added 2018/04/18 9:49 a.m.6 views

Hackers Exploiting Drupal Vulnerability to Inject Cryptocurrency Miners

The Drupal vulnerability CVE-2018-7600, dubbed Drupalgeddon2 that could allow attackers to completely take over vulnerable websites has now been exploited in the wild to deliver malware backdoors and cryptocurrency miners. Drupalgeddon2, a highly critical remote code execution vulnerability...

9.8CVSS8.2AI score0.99993EPSS
Exploits91
ThreatPost
ThreatPost
added 2018/01/17 3:42 p.m.15 views

Oracle Ships 237 Fixes in Latest Critical Patch Update

Oracle has shipped 237 patches for vulnerabilities impacting hundreds of product versions as part of its latest quarterly critical patch update. Product lines coming in for some of the most fixes include Oracle Financial Services Applications, with 34, Fusion Middleware with 27, MySQL with 25 and...

1.8AI score
Exploits0References2
Rows per page
Query Builder