Security Alerts & News
by Tymoteusz A. Góral

History
#1334 Rex Linux trojan can launch DDoS attacks, lock websites, mine for cryptocurrency
What initially looked like a string of Drupal sites infected with ransomware (that didn't work properly) now looks like a professional cybercrime operation that relies on a self-propagating Linux trojan to create a botnet with various capabilities.

Last May, in a Softpedia exclusive, Stu Gorton, CEO and co-founder of Forkbombus Labs, revealed the existence of a new type of ransomware that targeted Drupal websites. That particular ransomware wasn't really that effective, and webmasters could easily go around it and restore their old websites.

Mr. Gorton didn't share all the details with Softpedia at that particular point in time, saying there was still much to analyze about the said piece of malware that was written in Go and used CVE-2014-3704 to hijack Drupal websites.

According to new research released by Stormshield and Dr.Web, that malware, which calls itself "Rex," has received many updates in the last three months since we first reported on it.
Read more
#1336 Development version of the Hitler-ransomware discovered
#1335 Can good encryption be a double-edged sword for security in Australia?
#1334 Rex Linux trojan can launch DDoS attacks, lock websites, mine for cryptocurrency
#1333 Anti-Google research group in Washington is funded by Oracle
#1332 How the NSA snooped on encrypted Internet traffic for a decade
#1331 Multiple vulnerabilities identified in ‘utterly broken’ BHU routers
#1330 New Brazilian banking trojan uses Windows PowerShell utility
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12