Feds, Google, security orgs dismantle fraud botnet, eight people charged A collection of cybersecurity companies, Google, and the Feds are sharing details on how they uncovered and dismantled a massive ad-fraud operation known as “3ve” (pronounced “Eve”.)…
Monthly Archives: November 2018
Why you shouldn’t be worried about UPnP port masking
Last May, security firm Imperva wrote a blog post discussing a new proof of concept for bypassing DDoS mitigation after discovering reflected network protocols appearing on non-standard network ports. Imperva was able to replicate the same behavior using a technique called UPnP Port Masking, which uses the Universal Plug and Play (UPnP) Protocol to alter the source port of commonly abused network protocols in DDoS attacks. Multiple news outlets picked up on Imperva’s research and … More ? The post Why you shouldn’t be worried about UPnP port masking appeared first on Help Net Security .
View article:
Why you shouldn’t be worried about UPnP port masking
For recent big data software vulnerabilities, botnets and coin mining are just the beginning
The phrase “with great power comes great responsibility” was excellent advice when Ben Parker said it to his nephew Peter, aka Spiderman. It is even more applicable to any organization using open source software to manage their big data analysis. This is especially true since, in 2018, significant vulnerabilities were identified and disclosed for both Hadoop and Spark, allowing unauthenticated remote code execution via their REST APIs. Many enterprises have adopted big data processing components … More ? The post For recent big data software vulnerabilities, botnets and coin mining are just the beginning appeared first on Help Net Security .
View the original here:
For recent big data software vulnerabilities, botnets and coin mining are just the beginning
Malware scum want to build a Linux botnet using Mirai
Hadoop YARN is the attack vector, so lock it away Diligent hackers have decided routers and cameras aren’t enough, and have reportedly crafted Mirai variants targeting Linux servers.…
Continued here:
Malware scum want to build a Linux botnet using Mirai
“Classic” bugs open TP-Link’s SafeStream Gigabit Broadband VPN Router to attack
Cisco Talos researchers have flagged four serious vulnerabilities in TP-Link’s SafeStream Gigabit Broadband VPN Router (TL-R600VPN). All four affect the device’s HTTP server, and can lead to denial of service, information disclosure, and remote code execution. About the vulnerabilities The flaws affect TP-Link TL-R600VPN, hardware versions 2 and 3. Numbered CVE-2018-3948 and CVE-2018-3949, respectively, the flaws that can be exploited for DoS and information disclosure can be triggered via an unauthenticated web request and a … More ? The post “Classic” bugs open TP-Link’s SafeStream Gigabit Broadband VPN Router to attack appeared first on Help Net Security .
Read More:
“Classic” bugs open TP-Link’s SafeStream Gigabit Broadband VPN Router to attack
Cequence Security announces application security platform to stop bot attacks
Cequence Security released Cequence ASP, an application security platform that provides a scalable defense against the growing number of bot attacks affecting today’s hyper-connected organizations. These financially-motivated attacks target externally-facing web and mobile apps, as well as API services that provide connections to other applications across their digital ecosystem. Attack objectives can include account takeover, content scraping, distributed denial of service, and much more. “From a bad actor’s perspective, geo-distributed bot attacks are relatively easy … More ? The post Cequence Security announces application security platform to stop bot attacks appeared first on Help Net Security .
View article:
Cequence Security announces application security platform to stop bot attacks
‘DerpTroll’ derps into plea deal, admits DDoS attacks on EA, Steam, Sony game servers
Austin Thompson, 23, cops to $95,000 worth of damage The man accused over DDoS-bombing several online games hosts in 2013 and 2014 has entered a guilty plea under a deal with US authorities.…
More:
‘DerpTroll’ derps into plea deal, admits DDoS attacks on EA, Steam, Sony game servers
Spammer scum hack 100,000 home routers via UPnP vulns to craft email-flinging botnet
Look out for traffic to and from these IP addresses and ports Once again, a hundred thousand or more home routers have been press-ganged into a spam-spewing botnet, this time via Universal Plug and Play (UPnP).…
See more here:
Spammer scum hack 100,000 home routers via UPnP vulns to craft email-flinging botnet