Cybersecurity, CISA adds 7 new vulnerabilities in the exploited list
They are: CVE-2022-29464, CVE-2022-26904, CVE-2022-21919, CVE-2022-0847, CVE-2021-41357, CVE-2021-40450 and CVE-2019-1003029. Patch the flaws ASAP!
Cybercrime, Denonia is the first malware specifically designed to target Lambda
Cado cybersecurity experts: Written in Golang, it runs a crypto-mining software. It uses newer address resolution techniques for C2 traffic to evade detection.
Cybercrime, ClipBanker and PhoenixMiner conveyed via fake saved photos
The exe file is redline stealer. This, once opened, automatically downloads the other two malware: a banking trojan and a cryptominer.
Cybercrime, TeamTNT target organizations with Chimaera
AT&T Alien Labs cybersecurity experts: The campaign exploits multiple shell/batch scripts, new open source tools, a cryptominer, and the group IRC bot.
Cybercrime, Rocke Group uses a new malware to attack via saved SSH keys and weak passwords
Intezer cybersecurity experts: The China-linked APT’s code, after the victim has been infected, executes a Monero cryptominer.
Cybercrime, new Golang worm drops XMRig cryptominer on Linux-Windows
Intezer cybersecurity experts: The malware can easily maneuver from one platform to the other, and it targets public facing services.
Cybercrime, Lucifer campaign is evolving and will continue
Check Point cyber security experts: The Windows crypto miner and DDOS hybrid malware now is multi-platform and multi-architecture, targeting Linux and IoT devices.
Cybercrime, new campaign to distribute Lemon Duck with COVID-19 bait
Sophos cyber security experts: The malware, a cryptominer, infects the victim and tries to spread. For the attack it uses the EternalBlue exploit and an implementation of Mimikatz.
Cybercrime, Salt servers hacked thanks to two flaws
The Cyber Security Experts: The attackers used CVE-2020-11651 and CVE-2020-11652 to install backdoors and cryptominers. More than 6,000 devices could be compromised.
Cybercrime, Smominru botnet is spreading and it’s stronger
Guardicore Labs cyber security experts: Only in August the malware infected over 90,000 machines worldwide. It exploits brute force and EternalBlue for cryptomining.