Smargaft harnesses EtherHiding for stealthy C2 hosting
Guest Post: New botnet uses the Binance Smart Chain to host command and control servers and infect shell scripts like a virus to achieve persistence.
Tag: Malware
Slammer: 20 years after
Guest Post: Where were you when SQL Slammer nearly broke the Internet? Could it happen again?
DNS malware misuse and current countermeasures
Guest Post: Understanding malware threats towards the DNS is the first step towards mitigating them.
icanhazip: How a simple IP address tool survived a deluge of users
Guest Post: I made a simple and free tool to check the public-facing IP address of infrastructure. Its popularity nearly killed it.
Securing your network using Shadowserver reports
Guest Post: How to use this unique, and free, public benefit tool.
ZHtrap botnet uses honeypot to harvest infected devices
Guest Post: Analysis of a new type of botnet.
Skidmap and malicious DNS data mining
Guest Post: Analysing hundreds of billions of daily DNS queries to produce actionable threat intelligence.
RHOMBUS: a new IoT malware
Guest Post: RHOMBUS is a new adaptation of the Mirai codebase with new methodologies to persist and drop different stages and updates, while also backdooring the instance.
Cooperating and defending against COVID-19 scammers
Guest Post: The newly established COVID-19 Cyber Threat Coalition comprises thousands of independent and vendor information security researchers.
PowerShellRunBox: Analysing PowerShell threats using PowerShell debugging
Guest Post: Matt Oh shows how PowerShellRunBox can help analyse complicated malicious PowerShell scripts.