New GOlang Based Malware Targets Redis Server.

What is Redis? Redis is an open source in-memory database and cache which act as a real-time applications that needed a way to deliver data to their clients faster than a relational database could handle. It allows data fetching and delivery in short response time, allowing millions of requests per seconds. Redis¬†assures responsiveness by using … Continue reading New GOlang Based Malware Targets Redis Server.

Hackers Are Started To Use TCP Middlebox Reflection As A Weapon In DDoS Attacks.

Multiple distributed denial of service (DDoS) attack campaigns against Akamai users have been observed in recent weeks, with SYN flooding and huge volumes of traffic: up to 11 Gbps at 1.5 million packets per second (Mpps). We discovered that the attackers are employing a novel technique known as TCP Middlebox Reflection after analysing the TCP … Continue reading Hackers Are Started To Use TCP Middlebox Reflection As A Weapon In DDoS Attacks.

Phishing, Malware and Hacker Groups Take Sides in Russia-Ukraine War.

Ukraine's Computer Emergency Response Team (CERT-UA) has reported that Belarusian state-sponsored hackers are phishing its military members and connected individuals as part of the country's military invasion by Russia. "Mass phishing emails targeting private 'i.ua' and'meta.ua' accounts of Ukrainian military officers and related individuals have lately been spotted,¬† Once the account is compromised, the attackers … Continue reading Phishing, Malware and Hacker Groups Take Sides in Russia-Ukraine War.

Details Of Equation Group’s Bvp47 Covert Hacking Tool Discovered by Chinese Experts.

Researchers from China's Pangu Lab have leaked details of a "top-tier" backdoor used by the Equation Group, an APT with alleged ties to the NSA. The backdoor, dubbed "Bvp47" because of numerous references to the string "Bvp" and the numerical value "0x47" used in the encryption algorithm, was extracted from Linux systems in 2013 "during … Continue reading Details Of Equation Group’s Bvp47 Covert Hacking Tool Discovered by Chinese Experts.

Official NPM Package Repository Distributes 25 Malicious JavaScript Libraries.

Researchers Andrey Polkovnychenko and Shachar Menashe reported that ," lemaaa as a library that is supposed to be used by threat actors to influence Discord accounts. When used in a specific way, the library will hijack the secret Discord token provided to it in addition to performing the utility function requested." According to DevOps security … Continue reading Official NPM Package Repository Distributes 25 Malicious JavaScript Libraries.