The Latest in IT Security

Posts Tagged ‘remote access’

W32.Duqu: The Precursor to the Next Stuxnet

18
Oct
2011

On October 14, 2011, we were alerted to a sample that appeared to be very similar to Stuxnet by a research lab with strong international connections. They named the threat Duqu [dyü-kyü] because it creates files with the file name prefix “~DQ”. They provided us with samples recovered from computer systems located in Europe and […]

Category General Written by Symantec Security Response Blog 0 Comments

Read more ...

“1.php” Group Intrusion Set Paper

13
Oct
2011

ThreatLabZ has just released a report that provides a summary of incident information related to the “1.php” Group. Historically, this Group used command and control servers (C&Cs) with “/1.php?” for the checkin URL path – which is the reason for the informal name used. They have repeatedly targeted one of our customers – so I […]

Category Security Written by Zscaler Research 0 Comments

Read more ...

DDoS Watch: Keeping an Eye on Aldi Bot

06
Oct
2011

Background The intention of this entry is to profile some elements of the Aldi Bot in order to provide value for the security operations community and malware research community. Aldi Bot is a newer inexpensive DDoS bot that is growing in popularity. Recent data (September 30 2011) suggests that there are at least 50 distinct […]

Category Security Written by Arbor Networks 0 Comments

Read more ...

« Older Entries
Newer Entries »

Categories

SATURDAY, MARCH 15, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments