monero

There’s a good chance everyone who reads this story will have had some degree of interaction with a botnet we call MyKings (others call DarkCloud or Smominru), whether you know it or not. For the past couple of years, this botnet has been a persistent source of nuisance-grade opportunistic attacksRead More →

cryptojacking

Security experts at Palo Alto Networks discovered a worm dubbed Graboid that spreads using Docker containers. Palo Alto Networks researchers discovered a new Monero miner with worm-able capabilities, dubbed Graboid, that spreads using Docker containers. Experts discovered that to target new systems, the Graboid worm periodically queries the C&C for vulnerable hosts, in this wayRead More →

crypto

French law enforcement authorities recently have been able to shut down a major Monero (XMR) cryptojacking operation. According to the Cybercrime Fighting Center (C3N), the malware, known as Retadup Monero, infected a total of 850,000 computers before the authorities could finally finish its activities by tricking it. As reported by BBC, the police teamRead More →

crypto

Attackers are actively scanning for exposed Docker APIs on port 2375 and use them to deploy a malicious payload which drops a Dofloo Trojan variant, a malware known as a popular tool for building large scale botnets. The Dofloo (aka AESDDoS) malware was first detected in 2014 [1, 2, 3, 4] and it is known for allowingRead More →