Have you heard of the file sftp-config.json? You haven’t? Neither did we until a few weeks ago. It is used by some SFTP/FTP clients (Sublime SFTP is one) to pre-configure SFTP/FTP connections to remote sites and it contains some useful information in there (not encrypted): “type”: “ftp”,..“host”: “FTP HOST”,“user”: “FTP USER”,“password”: “FTP PASS”,“port”: “21″, Which […]
Russian anti-virus company Doctor Web is reporting that the Win32.Rmnet.12 network, monitored by its virus analysts since September 2011, exceeded three million infected hosts in June. The Win32.Rmnet.12 file infector could pose a serious threat, because it can steal passwords stored by popular FTP clients and perform backdoor tasks. In mid-April 2012 Doctor Web reported […]
Q: What is the Hlux/Kelihos botnet? A: Kelihos is Microsoft’s name for what Kaspersky calls Hlux. Hlux is a peer-to-peer botnet with an architecture similar to the one used for the Waledac botnet. It consists of layers of different kinds of nodes: controllers, routers and workers. Q: What is a peer-to-peer botnet? A: Unlike a […]
Latest Comments