Popular Posts
-
US 01:36 15.04.2016Get short URL Marco Marsala seemingly lost all traces of his company, including the websites that he works with, b...
-
Special Halloween Promo from SEMJar: Reliable and Affordable PBN Hosting. Available on October 28-31SEMJar, a SEO company renowned for its affordable services, invites every business owner to celebrate Halloween by getting reliable PBN ...
-
2017-08-22 Sports News of Tue, 22 Aug 20170 Tamale ready to host 2017 MTN FA Cup final - RFA Chairman File photo Mr. Abdoula...
-
July 17, 2017 by Sajal Chakraborty Learn about Amazon S3 (Simple Storage Service), creating a bucket in AWS S3 and then hosting stat...
-
SANTA FE, NM --(Marketwired - March 26, 2016) - CrowdReviews.com, a provider of web hosting reviews and ratings, has released a statement...
-
wedmfm.com is a wordpress.ORG software install on paid hosting, hosted by Bluehost, not by wordpress.COM. Contact your web host. You are...
-
Tweet Rackspace Hosting, Inc. (NYSE:RAX) – Analysts at Oppenheimer cut their Q3 2016 earnings per share ...
-
WebSite X5 – Evolution is a powerful application which makes it easy to create top-quality responsive websites, even if you've no desi...
-
The Golden Globes were a strong night for "La La Land" and FX's "Atlanta," but first-time host Jim...
-
It's Cameron's World now—the rest of us are just living in it. To wit, Cameron's World is a web-collage and de facto time ma...
Blog Archive
- December (19)
- November (25)
- October (28)
- September (26)
- August (28)
- July (31)
- June (26)
- May (27)
- April (28)
- March (30)
- February (28)
- January (31)
- December (31)
- November (30)
- October (31)
- September (29)
- August (44)
- July (56)
- June (53)
- May (54)
- April (48)
- March (55)
- February (44)
- January (3)
- December (5)
- November (5)
- October (26)
- September (25)
- August (29)
- July (26)
- June (18)
- September (1)
About Me
Total Pageviews
Researchers patrolling dark web uncover trojan plot targeting web hosting service
Web hosting provider Invision Power Services (IPS) this month was saved from a systems compromise that could have potentially damaged its clients, after researchers gathered intelligence on a cybercriminal plot that was unfolding on the dark web.
The scheme was spearheaded by a bad actor dubbed AlphaLeon, who is also known to have sold the recently discovered trojan Thanatos, aka Alphabot, on the online black market. According to a new report from SurfWatch Labs, one of AlphaLeon's latest schemes was compromising IPS via an unpatched software vulnerability. Had the adversary's campaign gone undetected, IPS could have secondarily compromised its client base, which includes some professional sports leagues and media and entertainment companies.
Upon being notified, Forest, Va.-based IPS confirmed via a penetration test that a malicious hacker had, indeed, infiltrated the company's managed hosting environment, which is operated via Amazon Web Services. Such unauthorized root-level access would have allowed the hackers to install exploit kits that could have infected users visiting IPS' hosted sites with malware capable of stealing bank credentials and bitcoins, delivering ransomware, launching distributed denial of service (DDoS) attacks and more.
Fortunately, SurfWatch threat intelligence analysts appear to have caught the campaign before it was launched. Adam Meyer, chief security strategist at SurfWatch Labs, said that his team of researchers is able to detect dark web threats such as this one through a combination of automated scanning and human investigation. "We also have built a quantity of undercover personalities," Meyer told SCMagazine.com, "and we use those personalities to get into areas where we can observe the back-room conversations" where cybercriminals wheel and deal.
SurfWatch would not name IPS's clients, nor did the company identify the specific software vulnerability that was exploited. SCMagazine.com's call to IPS for further comment went unanswered.
Source: Researchers patrolling dark web uncover trojan plot targeting web hosting service
0 comments:
Post a Comment