Tag: Rootkits
-
New TeamTNT Cryptojacking Campaign Targets CentOS Servers with Rootkit
The cryptojacking operation known as TeamTNT has likely resurfaced as part of a new campaign targeting Virtual Private Server (VPS) …
-
Rootkit capabilities likely with Windows bugs
Several rootkit-like capabilities could be obtained by threat actors through the exploitation of vulnerabilities in Windows’ DOS-to-NT path …
-
Rootkit Turns Kubernetes From Orchestration to Subversion
Kubernetes compromises have usually led to attackers creating cryptomining containers, but the outcomes could be much worse, say …
-
Qubitstrike Targets Jupyter Notebooks with Crypto Mining and Rootkit Campaign
A threat actor, presumably from Tunisia, has been linked to a new campaign targeting exposed Jupyter Notebooks in a two-fold attempt to …
-
Turnkey Rootkit for Amateur Hackers Makes Supply Chain Attacks Easy
It’s never been easier to hide malware in plain sight in open source software package repositories, and “DiscordRAT 2.0” now makes it easy …
-
Researchers Found New Rogue npm Package Deploying Open-Source R77 Rootkit
Researchers discovered that a new rogue npm package installed the r77 open-source rootkit. This was the first time that a rogue package was …
-
Reptile Rootkit employed in attacks against Linux systems in South Korea
Researchers observed threat actors that are using an open-source rootkit called Reptile in attacks aimed at systems in South Korea. …
-
Reptile Rootkit: Advanced Linux Malware Targeting South Korean Systems
Threat actors are using an open-source rootkit called Reptile to target Linux systems in South Korea. “Unlike other rootkit malware that …
-
Rootkit Attack Detections Increase at UAE Businesses
Detections of rootkit attacks against businesses in the United Arab Emirates are up 167% in 2023, with an increased view of their use in …
-
Pernicious Rootkits Pose Growing Blight On Threat Landscape
In recent weeks, attackers have leveraged workarounds that let them sign malicious kernel drivers, dealing a multi-pronged threat to …
-
Hackers Target Chinese Gamers With Microsoft-Signed Rootkit
Kernel mode driver can download second-stage payload directly to memory, allowing threat actors to evade endpoint detection and response …
-
Chinese Hackers Deploy Microsoft-Signed Rootkit to Target Gaming Sector
Cybersecurity researchers have unearthed a novel rootkit signed by Microsoft that’s engineered to communicate with an actor-controlled …
●●●