Cybercrime, also Linux has its Cobalt Strike Beacon version
Intezer cybersecurity experts spotted the new malware in August and dubbed it Vermilion Strike. It has been actively used in attacks targeting organizations.
Cybercrime, the most powerful DDoS attack ever: 1.72 million rps
Cloudflare cybersecurity experts: The aggression was launched by more than 20,000 Mirai’s bots in 125 countries. Many of them originated from Indonesia, India and Brazil.
Cybercrime, HelloKitty gang targets VMware ESXi servers
The cybersecurity expert MalwareHunterTeam: The group shut down them before encrypting files to prevent them from being locked and to avoid data corruption.
Cybercrime, RedXOR is a new malware which targets Linux systems
Intezer cybersecurity experts: It’s a backdoor linked to the Chinese state-sponsored hacking collective Winnti. It has meny capabilities and can be updated.
Cybercrime, new Golang worm drops XMRig cryptominer on Linux-Windows
Intezer cybersecurity experts: The malware can easily maneuver from one platform to the other, and it targets public facing services.
Cybercrime, Gitpaste-12 is back with more exploits and targets
Juniper Networks cybersecurity experts: The malware, a worm, is hosted in a new GitHub repository. It attacks Windows, Linux, IoT devices and more.
Cybercrime, Lucifer campaign is evolving and will continue
Check Point cyber security experts: The Windows crypto miner and DDOS hybrid malware now is multi-platform and multi-architecture, targeting Linux and IoT devices.
Cybercrime, Lucifer now targets also Linux systems
Netscout cyber security experts: The cryptojacking and DDoS malware includes additional tools and a port to the operating system. The bot supports TCP, UCP, ICMP, and HTTP-based attacks.
Cyber Security, BootHole put Windows and Linux devices at risk
Eclypsium: It’s a vulnerability in the GRUB2 bootloader, that hit devices using Secure Boot. Attackers can install persistent and stealthy bootkits or malware.
Cyber Security, two new medium vulnerabilities on Linux Kernel
They allow an actor to perform a denial of service (DoS) attack. The first one at local level, the second one by remote. Install the updates to mitigate the risks!