Read some of the most interesting and useful infosec articles we came across during the last half of October 2018. We have included information on exploits of servers with Hadoop installations, a password-stealing program called Agent Tesla, and a fully functional botnet based on Bitcoin Protocol. Also, learn about the decryption tool that helps GandCrab ransomware victims get their data back for free and about critical vulnerabilities discovered in various NAS Devices.

For more articles, check out our #onpatrol4malware blog.

Share this post:

emotet trojan

New DemonBot Botnet Pulls the YARN in Hadoop Servers

Source: Bleeping Computer

Attackers looking to increase the denial-service-power of their botnet have set their sights on servers with vulnerable Hadoop installations, compromising them via publicly available exploits. Read more.

emotet trojan

2 Million Network Storage Devices From WD, SeaGate, NetGear Affected by Unpatched Zero-Day Vulnerabilities

Source: GBHackers

Critical vulnerabilities discovered in various NAS Devices such as WD My Book, NetGear Stora, Seagate Home, Medion LifeCloud NAS allows attackers to exploit it remotely without any user interaction. Read more.

emotet trojan

Who Is Agent Tesla?

Source: Threatpost

A powerful, easy-to-use password stealing program known as Agent Tesla has been infecting computers since 2014, but recently this malware strain has seen a surge in popularity. Read more.

emotet trojan

GandCrab Ransomware decryption tool

Source: Bitdefender

Earlier this year in February, Bitdefender released the world’s first decryption tool to help GandCrab ransomware victims get their data back for free. But since then, victims of subsequent versions of GandCrab and its ‘ransomware-as-a-service’ affiliate approach have been reaching out to us for help. Read more.

emotet trojan

Experts presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol

Source: Security Affairs

Security experts Antonio Pirozzi and Pierluigi Paganini presented BOTCHAIN, the first fully functional Botnet built upon the Bitcoin Protocol. Read more.