Hacks/Cracks

Discover Hacks/Cracks News

Akira Ransomware Gang Targets Linux Servers, Extorts $42 Million

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on Windows systems but later shifted its attention to Linux servers, mainly targeting VMware ESXi virtual machines. The ransomware leverages different methods for initial access to target networks, such as exploiting known flaws in Cisco appliances, spear phishing, and abusing VPN services lacking multi-factor authentication protections. It also utilizes various tools for setting up persistence, privilege escalation, and lateral movement within networks.

Dave Wreski
Apr 19, 2024

Threat Actors Are Actively Using Pupy RAT Malware to Attack Linux Systems

A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been observed. The malware's multifunctional nature is a notable characteristic, striking a chord with Linux admins, infosec professionals, internet security enthusiasts, and sysadmins who are likely familiar with the potential threat of versatile malware.

Brittany Day
Apr 15, 2024

Linux Version of DinodasRAT Raises Serious Security Concerns

A Linux version of the multi-platform backdoor malware called DinodasRAT has been spotted in cyberattacks across several countries. The malware, also known as XDealer, is a C++-based threat that can harvest sensitive data from compromised systems.

Dave Wreski
Mar 31, 2024

Linux Admins Beware: Malvertising Campaign Exploiting PuTTY Puts Security at Risk

A malvertising campaign has been discovered that deploys a fake PuTTY client to deliver the Rhadamanthys stealer, a dangerous malware. The attackers exploit the trust placed in PuTTY as a widely used SSH and Telnet client by presenting a counterfeit website through malicious ads that appear at the top of Google search results. Let's examine this significant security threat targeting Linux admins more deeply, emphasizing the need for heightened vigilance and robust Linux security measures.

Dave Wreski
Mar 25, 2024

Analyzing AcidPour: A New and Evolving Linux Malware Threat

A new variant of the AcidRain Linux malware called AcidPour has been discovered. This malware targets explicitly Linux systems in Ukraine. AcidPour expands upon its predecessor and poses a significant risk to users. Let's examine the importance of this discovery, the implications for admins and security professionals, and measures you can take to protect against threats like AcidPour.

Brittany Day
Mar 19, 2024

New KrustyLoader Backdoor Threatens Linux & Windows Systems

The emergence of the KrustyLoader backdoor, with its variants targeting both Windows and Linux systems, has caught the attention of cybersecurity experts. This critical analysis will delve into the implications of this sophisticated backdoor, raise questions about its long-term consequences, and explore its impact on Linux admins, information security professionals, internet security enthusiasts, and sysadmins.

Anthony Pell
Mar 12, 2024

WogRAT Malware Exploits aNotepad, Targets Linux & Windows Users

The emergence of advanced malware strains presents significant challenges for security practitioners, and the recent discovery of the WogRAT malware is no exception. This article explores the implications of WogRAT's abuse of an online notepad service to store and retrieve malicious payloads.

Dave Wreski
Mar 06, 2024

Millions Of GitHub Repositories Infected With Malicious Code

Security researchers have uncovered a concerning cyberattack campaign that targets developers on GitHub, potentially affecting millions of repositories. This campaign utilizes repo confusion attacks, which exploit human error rather than package manager systems.

Dave Wreski
Mar 04, 2024

8.Locks HexConnections CodeGlobe Esm H200

Nood RAT Malware Attacks Linux Servers, Threatens Sensitive Data

The Nood RAT malware is a new threat to Linux servers worldwide. Security researchers say Nood RAT is designed to steal sensitive information from targeted servers. This article warns Linux admins and infosec professionals of the risks posed by the malware and how to prevent such cyberattacks.

Brittany Day
Mar 04, 2024

Ubuntu Tool Could Trick Users Into Installing Rogue Packages

A potential security vulnerability exists in the command-not-found tool in Ubuntu, which threat actors could exploit to recommend and install malicious packages on systems running Ubuntu operating systems. The command-not-found tool is installed by default on Ubuntu systems and suggests packages to install when users attempt to run commands that are not available.

Brittany Day
Feb 14, 2024

Crumbling Cookies: Examining the Implications of Google's Account Vulnerability

Security vulnerabilities in Google's login systems have been uncovered, enabling researchers to bypass Google's protections and access user accounts by obtaining login cookies. These findings raise concerns about the effectiveness of cookie-based authentication and the security of Google accounts in general.

LinuxSecurity.com Team
Jan 08, 2024

Danger in the Python Package Index: Malicious Code Lurking in PyPI

The recent uncovering of malicious Python projects being distributed through the Python Package Index (PyPI) is an urgent reminder of the need for enhanced vigilance and security around the Python open-source ecosystem. Threat actors have been able to compromise developer accounts and push out trojanized versions of legitimate Python libraries, enabling them to harvest credentials, execute arbitrary commands, and more.

LinuxSecurity.com Team
Jan 01, 2024

Malicious Python Projects Targeting Linux, Windows Systems

A new set of malicious Python projects are targeting Linux and Windows systems. Security Brief states, "There has been a significant rise in the number of attacks involving Python."

LinuxSecurity.com Team
Dec 28, 2023

Fake F5 BIG-IP Zero-Day Warning Emails Push Data Wipers

Alright, folks, let me fill you in. Fake security updates have been causing real-world havoc! The Israel National Cyber Directorate (INCD) alerts about phishing emails pretending to be F5 BIG-IP security updates, and guess what? These emails unleash Windows and Linux data wipers. Troubling, right?

LinuxSecurity.com Team
Dec 21, 2023

Krasue RAT Malware: A New Threat to Linux Systems

Let me fill you in on a stealthy threat to Linux systems that has flown under the radar for nearly three years! A remote access trojan dubbed "Krasue" has been silently infiltrating Linux systems like yours, primarily targeting telecommunications companies since 2021.

LinuxSecurity.com Team
Dec 21, 2023

8220 Hacker Group Attacking Windows & Linux Web Servers

The 8220 hacker group is exploiting both Windows and Linux web servers with crypto-jacking malware. It is believed that the group has access to the source code of both OSes, which enables them to exploit vulnerabilities in both systems.

LinuxSecurity.com Team
Dec 18, 2023

New SLAM Attack Threatens Future CPUs Security

Researchers have identified a new exploit impacting upcoming processors called “Spectre based on Linear Address Masking” (SLAM). This side-channel-based attack exploits the new security features in Intel (Linear Address Masking (LAM)), AMD (Upper Address Ignore (UAI)), and ARM (Top Byte Ignore (TBI) chips. Specifically, the SLAM attack is a transient execution technique exploiting the new memory improvement features to leak sensitive data like password hashes.

LinuxSecurity.com Team
Dec 17, 2023

This Is How To Protect Your Computers from LogoFAIL Attacks

A collection of new security vulnerabilities called LogoFAIL has been discovered hiding with the Unified Extensible Firmware Interfaces (UEFI) that we use for booting almost all modern computing devices. Linux or Windows, ARM or x86, it doesn't matter -- they're all vulnerable to these flaws!

LinuxSecurity.com Team
Dec 14, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

A team of Chinese hackers known as Kinsing has discovered a little-known security vulnerability in the Apache ActiveMQ message broker software. The vulnerability allowed the attackers to implant rootkits on Linux servers remotely and steal sensitive information such as usernames, passwords, and SSH keys.

LinuxSecurity.com Team
Nov 25, 2023

Windows, Linux Systems Targeted in Pro-Hamas BiBi Wiper Malware Attack

Researchers have discovered a new variant of BiBi malware attacks targeting Israeli Windows and Linux systems, resulting in data wipes. Alerts were sent out by Israel’s (Cyber Emergency Response Team) CERT to help potential target organizations prevent attacks by threat actors.

LinuxSecurity.com Team
Nov 15, 2023

Akira Ransomware Gang Targets Linux Servers, Extorts $42 Million

Threat Actors Are Actively Using Pupy RAT Malware to Attack Linux Systems

Linux Version of DinodasRAT Raises Serious Security Concerns

Discover Hacks/Cracks News

Akira Ransomware Gang Targets Linux Servers, Extorts $42 Million

Threat Actors Are Actively Using Pupy RAT Malware to Attack Linux Systems

Linux Version of DinodasRAT Raises Serious Security Concerns

Linux Admins Beware: Malvertising Campaign Exploiting PuTTY Puts Security at Risk

Analyzing AcidPour: A New and Evolving Linux Malware Threat

New KrustyLoader Backdoor Threatens Linux & Windows Systems

WogRAT Malware Exploits aNotepad, Targets Linux & Windows Users

Millions Of GitHub Repositories Infected With Malicious Code

Nood RAT Malware Attacks Linux Servers, Threatens Sensitive Data

Ubuntu Tool Could Trick Users Into Installing Rogue Packages

Crumbling Cookies: Examining the Implications of Google's Account Vulnerability

Danger in the Python Package Index: Malicious Code Lurking in PyPI

Malicious Python Projects Targeting Linux, Windows Systems

Fake F5 BIG-IP Zero-Day Warning Emails Push Data Wipers

Krasue RAT Malware: A New Threat to Linux Systems

8220 Hacker Group Attacking Windows & Linux Web Servers

New SLAM Attack Threatens Future CPUs Security

This Is How To Protect Your Computers from LogoFAIL Attacks

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Windows, Linux Systems Targeted in Pro-Hamas BiBi Wiper Malware Attack

LinuxSecurity Poll

Why do you use a VPN on Linux?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By