Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

Suspicious Prometei Botnet Activity, (Sun, Jan 7th)

published on 2024-01-07 20:23:34 UTC by
Content:
On the 31 Dec 2023, after trying multiple username/password combination, actor using IP 194.30.53.68 successfully loging to the honeypot and uploaded eight files where 2 of them are protected with a 7zip password (updates1.7z & updates2.7z). Some of  these files have been identified to be related to the Prometei trojan by Virustotal. The file sqhost.exe [6] was last found by Talos [7] used with the Prometei botnet as a trojan coin miner. 
Article: Suspicious Prometei Botnet Activity, (Sun, Jan 7th) - published 10 months ago.

https://isc.sans.edu/diary/rss/30538   
Published: 2024 01 07 20:23:34
Received: 2024 01 07 21:35:47
Feed: SANS Internet Storm Center, InfoCON: green
Source: SANS Internet Storm Center, InfoCON: green
Category: Alerts
Topic: Vulnerabilities
Views: 2

Custom HTML Block

Click to Open Code Editor