Cookie Settings

This website uses cookies and similar technologies to provide essential functionality and improve your experience. Some features, such as demo scheduling and chat support, require marketing cookies to function. By clicking "Accept All", you consent to all cookies. Alternatively, you can customize your preferences, but note that declining marketing cookies will limit certain website features.

Cyware Daily Threat Intelligence

Cyware Daily Threat Intelligence March 12, 2018 - Featured Image

Daily Threat Briefing Mar 12, 2018

Top Malware Reported in the Last 24 Hours

New Coinminer campaigns
Mining campaigns targeting Windows Server, Apache Solr, and Redis servers, have been discovered. One of the campaigns is named RedisWannaMine, and is being used to compromise servers by scanning for systems running outdated Redis versions that are vulnerable to the CVE-2017-9805 exploit. The second campaign exploits CVE-2017-12629 on unpatched Apache Solr servers.

APT15 using new malware
A cyber espionage group, dubbed APT15, is found using a new malware, targeting an organization that provides services to the U.K. government. The hacker group is also using RoyalCli and RoyalDNS backdoors in order to infect systems.

Necrus botnet
Currently, Necrus is considered to be the world's largest spam botnet. The botnet commonly uses spam emails with macros or JavaScript attachments to download malware from different locations. Necurs' recipient database includes email addresses that have been harvested online.

Related Threat Briefings