A group of security companies today published evidence linking the Sony hack, Dark Seoul and Operation Troy to the Lazarus Group.
Tag Archives: AlienVault
Tracking Malware That Uses DNS for Exfiltration
Attackers have long used distributed denial of service attacks to knock domain-name servers offline but over the last several months malware creators have taken to using DNS requests to tunnel stolen data.
Shellshock Exploits Targeting SMTP Servers at Webhosts
SANS Internet Storm Center reports attacks against SMTP servers using Shellshock exploits to create a DDoS botnet.
Honeypot Snares Two Bots Exploiting Bash Vulnerability
Two malware samples trying to exploit the Bash vulnerability, both DDoS bots, were snared in a honeypot belonging to AlienVault Labs.