Security Alerts & News
by Tymoteusz A. Góral

History
#1049 LizardStresser IoT botnet part of 400Gbps DDoS attacks
LizardStresser, a distributed denial of service botnet, has found new life leveraging hundreds of internet-based webcams in attacks against Brazilian-based banks, government agencies as well as a handful of U.S.-based gaming companies.

Researchers at the Arbor’s Security Engineering and Response Team (ASERT) say publicly released source code of the LizardStresser botnet in 2015, by the Lizard Squad DDoS group, is behind the attacks. In a report released this week, ASERT says an unknown group of cybercriminals are running this latest iteration of the LizardStresser botnet via approximately 100 command-and-control servers, manipulating about 1,300 webcams and launching attacks as large as 400Gbps.

It’s unclear whose webcams are being hijacked in the attacks, but researchers say the cams that are part of this LizardStresser botnet are running either the x86, ARM or MIPS CPU architecture – all commonly used on embedded IoT devices.
Read more
#1057 Locky variant Zepto debuts with big spam push
#1056 Siemens patches password reconstruction vulnerability in SICAM PAS
#1055 Mozilla releases first nightly build of Servo, its next-generation browser engine
#1054 You can now browse through 427 million stolen MySpace passwords
#1053 The first big Internet of Things security breach is just around the corner
#1052 Brazilians migrate from WhatsApp to Telegram, cybercriminals follow suit
#1051 Massachusetts General Hospital confirms third-party breach
#1050 Netherlands gets first nationwide 'Internet of Things'
#1049 LizardStresser IoT botnet part of 400Gbps DDoS attacks
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12