Zealot: New Apache Struts Campaign Uses EternalBlue and EternalSynergy to Mine Monero on Internal Networks

Article / Dec 15, 2017 (MODIFIED: Jan 18, 2018)

By maxim zavodchik liron segal

Zealot Apache Struts campaign targets vulnerabilities in Windows, Linux, and DotNetNuke, then uses leaked NSA exploits to mine Monero on internal networks.

NSA, CIA Leaks Provide a Roadmap to Stealthier, Faster, More Powerful Malware Like SambaCry and NotPetya

Blog / Jun 27, 2017 (MODIFIED: Aug 9, 2017)

By mike convertino

Recent NSA, CIA leaks expose advanced techniques for building automated malware factories that create SambaCry-like threats that deploy over untraceable networks.

From NSA Exploit to Widespread Ransomware: WannaCry Is on the Loose

Blog / May 12, 2017 (MODIFIED: Jul 24, 2017)

By ray pompon

The new EternalBlue NSA exploit is powering a wave of virulent ransomware sweeping across Europe.

From DDoS to Server Ransomware: Apache Struts 2 – CVE-2017-5638 Campaign

Article / Mar 27, 2017 (MODIFIED: Jul 24, 2017)

By maxim zavodchik ilya chernyakov julia karpin dylan syme

It is amazing how quickly threat actors using old web vulnerabilities in their campaigns can adapt and switch to new zero-days to deliver the same payloads.

Follow us on social media.