Hacks/Cracks

Discover Hacks/Cracks News

New Cryptojacking Malware Targeting Apache, Oracle, Redis Servers

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The evasive new Pro-Ocean cryptojacking malware is sidestepping security defenses and targeting Apache, Oracle and Redis servers.

LinuxSecurity.com Team
Feb 01, 2021

QNAP urges users to secure against Dovecat crypto-mining malware

The Dovecat Monero-mining malware doesn't steal data, but it consumes large amounts of CPU and memory. This is the latest threat faced by QNAP customers - after research published in July 2020 identified that tens of thousands of NAS drives are potentially vulnerable to malware that prevents administrators from applying patches.

LinuxSecurity.com Team
Jan 25, 2021

DreamBus botnet targets enterprise apps running on Linux servers

The recently discovered DreamBus botnet uses exploits and brute-force attacks to target PostgreSQL, Redis, SaltStack, Hadoop, Spark, and others enterprise-level apps that run on Linux systems. "The idea is to give the DreamBus gang a foothold on a Linux server where they could later download and install an open-source app that mines the Monero (XMR) cryptocurrency to generate profits for the attackers."

LinuxSecurity.com Team
Jan 25, 2021

DreamBus, FreakOut Botnets Pose New Threat to Linux Systems

Two recently discovered Linux botnets - DreamBus and FreakOut - are designed for DDoS attacks, cryptocurrency mining and other malicious purposes.

LinuxSecurity.com Team
Jan 22, 2021

'FreakOut' Botnet Targets Unpatched Linux Systems

Researchers are tracking a new botnet dubbed "FreakOut" that's targeting vulnerabilities in Linux systems. Botnet operators have been mass-scanning for vulnerable Linux devices, and the command-and-control server associated with FreakOut has now targeted several hundred vulnerable devices.

LinuxSecurity.com Team
Jan 21, 2021

OpenWRT reports data breach after hacker gained access to forum admin account

OpenWRT has disclosed a data breach that occurred after a malicious hacker gained access to a forum admin account. The OpenWRT wiki, which contains the official download links, was not compromised, the project said.

LinuxSecurity.com Team
Jan 19, 2021

SolarWinds defense: How to stop similar attacks

The Linux Foundation has offered suggestions on how we can avoid SolarWinds type attacks in the future. Doing so won't be easy - but it must be done.

LinuxSecurity.com Team
Jan 15, 2021

2602101111 C8fbe14015 K E1610126033739 1024x614 Esm H200

Linux machines again targeted by hackers with new memory loader

Linux has become a popular target among cybercriminal groups, who have started infecting Linux machines via a fileless malware installation technique that until recently was more commonly used against Windows-based systems.

LinuxSecurity.com Team
Jan 11, 2021

Linux malware authors use Ezuri Golang crypter for zero detection

Linux malware authors are leveraging the Ezuri Golang crypter to pack their malware with dangerous zero detection capabilities.

LinuxSecurity.com Team
Jan 08, 2021

Cryptocurrency stealer for Windows, macOS, and Linux went undetected for a year

The ElectroRAT cryptocurrency-stealing malware was written from scratch and was likely installed by thousands of Linux, Windows and MacOS users over the past year.

LinuxSecurity.com Team
Jan 06, 2021

Golang malware infecting Windows, Linux servers with XMRig miner

The Golang malware has been active since last month, exploiting poor security practices to target both Linux and Windows-based servers. Implementing 2FA with robust passwords and keeping all running software updated can help protect against Golang and other dangerous attacks.

LinuxSecurity.com Team
Jan 04, 2021

New worm turns Windows, Linux servers into Monero miners

Security researchers have discovered a new self-spreading Golang-based malware that has been actively dropping XMRig cryptocurrency miners on both Windows and Linux servers since early December.

LinuxSecurity.com Team
Dec 31, 2020

New Windows malware may soon target Linux, macOS devices

A newly discovered Windows trojan linked to the AridViper threat group, dubbed PyMICROPSIA, shows signs that it might be used to infect computers running Linux and macOS as well.

LinuxSecurity.com Team
Dec 16, 2020

Updated Trickbot malware threatens firmware security

Despite recent takedown efforts, persistent Trickbot operators are back with a new module call "Trickboot" that detects UEFI/BIOS firmware vulnerabilities. The Trickbot malware is no longer only at threat to Windows users - it is now targeting Linux systems as well.

LinuxSecurity.com Team
Dec 04, 2020

Hacking Campaign Malware Botnet Graph Esm H200

Stantinko's Linux malware now poses as an Apache web server

The eight-year-old Stantinko botnet has updated its Linux malware - now posing as an Apache web server.

LinuxSecurity.com Team
Nov 25, 2020

Google Chrome Update Gets Serious: Homeland Security (CISA) Confirms Attacks Underway

The CISA has confirmed that attackers are exploiting mutiple zero-day vulnerabilities in Google Chrome, and urges Linux, Windows and Mac users to update immediately.

LinuxSecurity.com Team
Nov 16, 2020

New Platypus attack can steal data from Intel CPUs

Security researchers have discovered a new attack method dubbed "Platypus" that can extract data from Intel CPUs. Intel has now released microcode updates to prevent malicious actors from exploiting the Intel RAPL mechanism with Platypus.

LinuxSecurity.com Team
Nov 11, 2020

Gitpaste-12 Worm Targets Linux Servers, IoT Devices

The newly discovered Gitpaste-12 worm exploits GitHub and Pastebin to house component code, and harbors 12 different initial attack vectors.

LinuxSecurity.com Team
Nov 09, 2020

Ransomware Attacks Are Getting More Ambi 5d5177f616e22d00012ad3fa 1 Aug 13 2019 15 03 26 Poster Esm H200

Linux version of RansomEXX ransomware discovered

Security researchers have discovered a Linux version of the human-operated Windows RansomEXX ransomware. This marks the first time that a major Windows ransomware strain has been ported to Linux to aid hackers in their targeted intrusions.

LinuxSecurity.com Team
Nov 09, 2020

New Gitpaste-12 Worming Botnet Spreads via GitHub And Pastebin – Experts Perspectives

Get expert insight on a new “Gitpaste-12” worming botnet spreading via GitHub and Pastebin in this isBuzz News article.

LinuxSecurity.com Team
Nov 06, 2020

Akira Ransomware Gang Targets Linux Servers, Extorts $42 Million

Threat Actors Are Actively Using Pupy RAT Malware to Attack Linux Systems

Linux Version of DinodasRAT Raises Serious Security Concerns