Kumar

Shell DDoS Malware Attacks Linux SSH Servers That Are Not Well-Managed

by

A new malware campaign called ShellBot targets poorly managed Linux SSH servers. According to an AhnLab Security Emergency Response Center (ASEC) report, ShellBot, also known as PerlBot, is a DDoS Bot malware created in Perl that connects with the C&C server over IRC. ShellBot has been attacking Linux systems for years despite being old malware. Desktop malware attacks often occur through online browsers or email attachments. Threat actors often spread malware as legitimate software to trick consumers into installing it. Threat actors utilise several strategies to assault server systems. These attacks target poorly managed or unpatched services. RDP and SQL …

Know More

Google will only keep SSL certificates for 90 days.

by

Google recently announced that it wants to cut the maximum length of time that public TLS (SSL) certificates can be used from 398 days to 90 days. Under its “Moving Forward, Together” plan, Google planned to limit the maximum public TLS certificate validity to 90 days through “future policy updates or a CA/B Forum Ballot Proposal.” This is a small but important point that should be noted. The maximum time a public SSL certificate can be used has gone from three years to two years to one year, and now Google says it wants to cut this time even more …

Know More

Gmail users being targeted by hackers.

by

In an important information security advisory, the German Federal Office for the Protection of the Constitution (BfV) and the National Intelligence Service of the Republic of Korea (NIS) worked together. This advisory warns about the sneaky hacking group Kimsuki “Kim Su-ki” (aka Thallium, Velvet Chollima), which was found to be using malicious Chrome extensions to gain unauthorised access to Gmail accounts and steal sensitive information from them. Kimsuky, a North Korean threat group, uses spear phishing to spy on the following people and organisations: DiplomatsJournalistsGovernment departmentsProfessors at universitiesPoliticiansAt first, the threat actors were mostly concerned with targets in South Korea. …

Know More