Cyber Security
Stantinko Observed Using a New Version of a Linux Proxy Trojan
Using a new version of a Linux proxy Trojan, a threat community monitored as Stantinko was observed posing as Apache servers to stay undetected.
Stantinko is thought to have been running since at least 2012, initially outlined in 2017, ensnaring compromised networks into a botnet primarily used in large adware schemes, but also for backdoor operations, brute-force attacks, and more.
The Stantinko group was historically primarily known for attacking Windows applications, but recent attacks have revealed that they are now working on evolving their Linux malware, with a new proxy Trojan masquerading as httpd, the Apache Hypertext Transmission Protocol Server that is used on several Linux servers.
“We believe that this malware is part of a broader campaign that uses compromised Linux servers,” say security researchers at Intezer.
Detected on VirusTotal by a single anti-virus engine, the sample is an unstripped 64-bit ELF binary that validates a configuration file upon execution. The malware prevents execution if this file is absent or lacks the expected structure.
The proxy daemonizes itself if the validation completes, in which it generates a socket and a listener that allows it to accept connections. This may be the way contaminated computers deal with each other, according to Intezer.
The new version, which was discovered almost three years after the previous one has a similar function, but reveals a variety of changes, including the command and control (C&C) IP address stored in the configuration file dropped next to the malware, the absence of the new version’s self-updating capability, and the dynamic connection of the new version.
Several feature names within the dataset have been shown to be similar to the previous version, but the current version does not call them statically. In addition, the C&C routes suggest the same group’s previous campaigns, indicating that the current Trojan is still related to Stantinko.
Source: https://cybersguards.com/stantinko-observed-using-a-new-version-of-a-linux-proxy-trojan/
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.
Source: https://threatpost.com/breaking-down-joe-bidens-10b-cybersecurity-down-payment/163304/
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.
Source: https://threatpost.com/outgoing-fcc-chair-security-china/163318/
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.
Source: https://threatpost.com/meetmindful-daters-compromised-data-breach/163313/
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.
Source: https://threatpost.com/cisco-dna-center-bug-remote-attack/163302/
Tesla FSD Beta pushed to limits in real-world torture test
AI clocks first-known ‘binary sextuply-eclipsing sextuple star system’. Another AI will be along shortly to tell us how to pronounce that properly
Satellite fires up iodine-fueled ion thruster for the first time
Bridgetown 2 Holdings Limited (BTNB) Prices $260M IPO
Tesla Giga Berlin’s next-gen paint shop takes form with dipping pool deliveries
Exclusive: Wheels Up in talks with SPAC to go public: sources
Report: SPACs 2.0
Northern Star Investment Corp. II (NTSB.U) Prices Upsized $350M IPO
Science Strategic Acquisition Corp. Alpha (SSAAU) Prices Upsized $270M IPO
Biotech Acquisition Company (BIOTU) Prices $200M IPO
Lockheed Martin and Boeing debut Defiant X advanced assault helicopter
LMF Acquisition Opportunities, Inc. (LMAOU) Prices Upsized $90M IPO
Horizon presents its long-range Cavorite X5 hybrid eVTOL
Former Goldman Sachs exec: Bitcoin ‘could work,’ but will attract more regulation
Hymer CrossOver 4×4 camper vans escape the grid for up to 10 days
Fossil analysis suggests newly hatched tyrannosaurs were dog-sized
Review: 2021 Mercedes-Benz GLE and GLS hit the high note
Dakota Power wins N.J. project approval, has billion-dollar solar plans
Breaking Down Joe Biden’s $10B Cybersecurity ‘Down Payment’
Tesla, EV makers to benefit as President Biden announces electrified Gov’t fleet
Other than Bitcoin, Coinbase notes institutional demand for Ethereum as well
National lab and Youngstown State partner to develop battery manufacturing workforce
Outgoing FCC Chair Issues Final Security Salvo Against China
2.28M MeetMindful Daters Compromised in Data Breach
Governance: Companies mature in their use of AI know that it needs guardrails
XRP, Tron, Synthetix Price Analysis: 25 January
Taboola is going public via a SPAC, aiming to raise $545 million to expand its content recommendations to TV, cars, gaming and ecommerce
MicroStrategy CEO addresses FUD over tax issues for Bitcoin investors
Foley Trasimene Acquisition Corporation (WPF) to Combine with Alight Solutions in $7.3Bn Deal
Tishman Speyer-backed SPAC to take smart-lock maker Latch public in $1.6 bln deal
-
Blockchain1 week agoThe Countdown is on: Bitcoin has 3 Days Before It Reaches Apex of Key Formation
-
Blockchain1 week agoLitecoin, VeChain, Ethereum Classic Price Analysis: 17 January
-
Blockchain1 week agoIs Ethereum Undervalued, or Polkadot Overvalued?
-
Blockchain7 days ago5 Best Bitcoin Alternatives in 2021
-
SPAC Insiders7 days agoChurchill Capital IV (CCIV) Releases Statement on Lucid Motors Rumor
-
Blockchain1 week agoHere’s why Bitcoin or altcoins aren’t the best bets
-
Cyber Security6 days agoCritical Cisco SD-WAN Bugs Allow RCE Attacks
-
Blockchain3 days agoBuying the Bitcoin Dip: MicroStrategy Scoops $10M Worth of BTC Following $7K Daily Crash
-
Blockchain3 days agoBitcoin Correction Intact While Altcoins Skyrocket: The Crypto Weekly Recap
-
Blockchain1 week agoBitcoin Worth $140 Billion Lost Says UK Council
-
Blockchain4 days agoTA: Ethereum Starts Recovery, Why ETH Could Face Resistance Near $1,250
-
Blockchain3 days agoMicroStrategy CEO claims to have “thousands” of executives interested in Bitcoin
English
Arabic
Chinese (Simplified)
Chinese (Traditional)
Dutch
Finnish
French
German
Greek
Hebrew
Hindi
Indonesian
Italian
Japanese
Khmer
Korean
Malayalam
Norwegian
Polish
Portuguese
Romanian
Russian
Slovenian
Spanish
Swedish
Turkish
Vietnamese