Cybercrime, TeamTNT target organizations with Chimaera
AT&T Alien Labs cybersecurity experts: The campaign exploits multiple shell/batch scripts, new open source tools, a cryptominer, and the group IRC bot.
Cybercrime, the Necro Python malware is evolving
Cisco Talos cybersecurity experts: The bot has new features, ranging from different C2 communications to exploits to spread. It also uses a Tezos miner.
Cybercrime, Lucifer now targets also Linux systems
Netscout cyber security experts: The cryptojacking and DDoS malware includes additional tools and a port to the operating system. The bot supports TCP, UCP, ICMP, and HTTP-based attacks.
Cyber Espionage, Lazarus targets Linux for the first time via Dacls RAT
Netlab 360 cyber security experts: North Korea APT’s malware has 6 plug-in modules: execute commands, file management, process management, test network access, C2 connection agent, network scan.
Xwo, a new form of malware, is scanning Internet for a future huge cyber attack
AT&T Alien Labs cyber security experts: It’s a Python-based bot scanner, that search for exposed web services and default passwords. It’s related to MongoLock and Xbash.