Botnet Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Russia-Linked Hackers Attacking Governmental And Political Organizations

Aman Mishra — Tue, 22 Oct 2024 10:53:20 +0000

Two pro-Russian threat actors launched a distributed denial-of-service (DDoS) attack campaign against Japanese organizations on October 14, 2024. The campaign targeted logistics, manufacturing, government, and political entities. An attack leveraged various non-spoofed direct-path DDoS attack vectors, including well-known nuisance networks, cloud providers, and VPN networks, where the campaign using the DDoSia botnet is ongoing and […]

The post Russia-Linked Hackers Attacking Governmental And Political Organizations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

ErrorFather Hackers Attacking & Control Android Device Remotely

Balaji — Tue, 15 Oct 2024 15:49:39 +0000

The Cerberus Android banking trojan, which gained notoriety in 2019 for its ability to target financial and social media apps, has continued to evolve and spread through various forks and variants. Recent research has uncovered a new campaign, dubbed ErrorFather, which leverages the Cerberus source code and utilizes a multi-stage dropper mechanism to deploy the […]

The post ErrorFather Hackers Attacking & Control Android Device Remotely appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

GorillaBot Emerged As King For DDoS Attacks With 300,000+ Commands

Aman Mishra — Mon, 30 Sep 2024 14:52:17 +0000

The newly emerged Gorilla Botnet has exhibited unprecedented activity, launching over 300,000 DDoS attacks against targets in over 100 countries between September 4 and 27. The botnet, a modified version of Mirai, supports multiple CPU architectures and employs advanced techniques to maintain long-term control over infected devices. It leverages encryption algorithms commonly used by the […]

The post GorillaBot Emerged As King For DDoS Attacks With 300,000+ Commands appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Flax Typhoon’s Botnet Actively Exploiting 66 Vulnerabilities In Various Devices

Gurubaran — Thu, 26 Sep 2024 05:51:06 +0000

The Five Eyes agencies recently released a joint cybersecurity advisory detailing a new botnet, Flax Typhoon, linked to Chinese state-sponsored actors. The advisory highlights the actors’ use of compromised routers and IoT devices to establish a vast botnet capable of various malicious activities. The advisory provides technical indicators of compromise, exploited vulnerabilities, and the geographical […]

The post Flax Typhoon’s Botnet Actively Exploiting 66 Vulnerabilities In Various Devices appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Researchers Detailed Raptor Train Botnet That 60,000+ Compromised Devices

Aman Mishra — Thu, 19 Sep 2024 15:44:35 +0000

Researchers discovered a large, Chinese state-sponsored IoT botnet, “Raptor Train,” that compromised over 200,000 SOHO and IoT devices. Operated by Flax Typhoon, the botnet leveraged a sophisticated control system, “Sparrow,” to manage its extensive network. The botnet posed a significant threat to various sectors, including military, government, and IT, with the potential for DDoS attacks […]

The post Researchers Detailed Raptor Train Botnet That 60,000+ Compromised Devices appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mirai Botnet Attacking Apache OFBiz Directory Traversal Vulnerability

Divya — Mon, 05 Aug 2024 11:13:23 +0000

The notorious Mirai botnet has been observed exploiting a recently disclosed directory traversal vulnerability in Apache OFBiz. This Java-based framework, supported by the Apache Foundation, is used for creating ERP (Enterprise Resource Planning) applications, which are critical for managing sensitive business data despite being less prevalent than commercial alternatives. Vulnerability Details and Exploitation According to […]

The post Mirai Botnet Attacking Apache OFBiz Directory Traversal Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Hackers Attacking Linux Cloud Servers To Gain Complete Control

Tushar Subhra — Thu, 27 Jun 2024 09:59:04 +0000

Malware storage, distribution, and command and control (C2) operations are increasingly being used to leverage cloud services for recent cybersecurity threats. But, this complicates the detection process and all the prevention efforts. Security researchers at FortiGuard Labs have recently observed that the botnets like UNSTABLE and Condi have been actively exploiting the Linux cloud platforms […]

The post Hackers Attacking Linux Cloud Servers To Gain Complete Control appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

New Botnet Sending Millions of Weaponized Emails with LockBit Black Ransomware

Divya — Tue, 14 May 2024 10:30:52 +0000

The New Jersey Cybersecurity & Communications Integration Cell (NJCCIC) has detected a formidable new cyber threat. Dubbed LockBit Black, this ransomware campaign is leveraging a botnet to distribute millions of weaponized emails, posing a significant risk to individuals and organizations. The Mechanics of the Attack The LockBit Black campaign, identified through the NJCCIC’s sophisticated email […]

The post New Botnet Sending Millions of Weaponized Emails with LockBit Black Ransomware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Chinese Botnet As-A-Service Bypasses Cloudflare & Other DDoS Protection Services

Eswar — Mon, 29 Apr 2024 08:41:00 +0000

A large botnet-as-a-service network originating from China was discovered, which comprises numerous domains, over 20 active Telegram groups, and utilizes other domestic communication channels. The infrastructure that supports this botnet, located in China, raises concerns about the potential for large-scale, coordinated attacks. Botnets are collections of compromised devices that attackers can remotely control. The attackers […]

The post Chinese Botnet As-A-Service Bypasses Cloudflare & Other DDoS Protection Services appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

RUBYCARP the SSH Brute Botnet Resurfaces With New Tools

Divya — Wed, 10 Apr 2024 08:12:32 +0000

The cybersecurity community is again on high alert as the notorious botnet group RUBYCARP, known for its SSH brute force attacks, has resurfaced with new tools and tactics. The Sysdig Threat Research Team (Sysdig TRT) has been closely monitoring the activities of this Romanian threat actor group, which has been active for over a decade […]

The post RUBYCARP the SSH Brute Botnet Resurfaces With New Tools appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.