Article / Jan 3, 2018 (MODIFIED: Jan 25, 2018)
A new Python-based botnet that mines Monero spreads via SSH and leverages Pastebin to publish new C&C server addresses.
Article / Dec 15, 2017 (MODIFIED: Jan 18, 2018)
Zealot Apache Struts campaign targets vulnerabilities in Windows, Linux, and DotNetNuke, then uses leaked NSA exploits to mine Monero on internal networks.
Article / Mar 27, 2017 (MODIFIED: Jul 24, 2017)
It is amazing how quickly threat actors using old web vulnerabilities in their campaigns can adapt and switch to new zero-days to deliver the same payloads.
Article / Feb 25, 2016 (MODIFIED: Jul 6, 2017)
Like many other financial Trojans, the notorious Dridex malware keeps evolving and strengthening its presence.
Report / Oct 10, 2014 (MODIFIED: Jul 6, 2017)
Shellshock can take advantage of HTTP headers as well as other mechanisms to enable unauthorized access to Bash.
Article / Jul 24, 2014 (MODIFIED: Jul 6, 2017)
Despite being around since 2005, perlb0t is still being used against unpatched servers.