The New Linux Botnet “B1txor20” Uses A DNS Tunnel And Exploits A Log4J Flaw.

Qihoo 360's Netlab security team reported that, "Based on its propagation using the file name 'b1t,' the XOR encryption algorithm, and the RC4 algorithm key length of 20 bytes. A previously unknown backdoor has been discovered that targets Linux systems with the objective of enlisting the computers in a botnet and functioning as a channel … Continue reading The New Linux Botnet “B1txor20” Uses A DNS Tunnel And Exploits A Log4J Flaw.

In Q4 2021, nearly 34 Ransomware Variants Were Discovered In Hundreds Of Cyberattacks.

According to new Intel 471 research, 722 ransomware attacks were observed during the fourth quarter of 2021 with LockBit 2.0, Conti, PYSA, Hive  and Grief emerging as the most common strains. The attacks are up 110 and 129 percent from the third and second quarters of 2021, respectively. During the three-month period between October and December … Continue reading In Q4 2021, nearly 34 Ransomware Variants Were Discovered In Hundreds Of Cyberattacks.

The German Government Warns Against Using Kaspersky Antivirus Software From Russia.

Kaspersky Lab, a Russian cybersecurity business, responded on Tuesday to a warning from Germany's Federal Office of Information Security (BSI) against using the company's security products in the country due to doubts about the manufacturer's reliability. The company said it will continue to assure our partners and customers of the quality and integrity of our … Continue reading The German Government Warns Against Using Kaspersky Antivirus Software From Russia.

CaddyWiper Is A New Data-Erasing Malware That Targets Ukrainian Networks.

According to ESET telemetry, it was detected on a few dozen systems in a small number of businesses. This new malware erases user data and partition information from associated drives. ESET, a slovak cybersecurity firm, named the third wiper "CaddyWiper," which it first saw on March 14 at 9:38 a.m. UTC. The virus was compiled … Continue reading CaddyWiper Is A New Data-Erasing Malware That Targets Ukrainian Networks.

Russian Ransomware Gang Rebuilds Other APT Groups Custom Hacking Tools.

According to Felipe Duarte and Ido Naor ( researchers at Israeli incident response firm Security Joes) , the unusual attack chain involved the use of stolen credentials to gain unauthorised access to the user  network leading to the deployment of Cobalt Strike payloads on compromised assets. A Russian-speaking ransomware group likely targeted an unnamed entity in the … Continue reading Russian Ransomware Gang Rebuilds Other APT Groups Custom Hacking Tools.