all InfoSec news
A Security Vulnerability in the KmsdBot Botnet
Dec. 15, 2022, 12:10 p.m. | Bruce Schneier
Schneier on Security www.schneier.com
Security researchers found a software bug in the KmsdBot cryptomining botnet:
With no error-checking built in, sending KmsdBot a malformed command—like its controllers did one day while Akamai was watching—created a panic crash with an “index out of range” error. Because there’s no persistence, the bot stays down, and malicious agents would need to reinfect a machine and rebuild the bot’s functions. It is, as Akamai notes, “a nice story” and “a strong example of the fickle nature of technology.” …
botnet botnets kmsdbot security security vulnerability vulnerabilities vulnerability
More from www.schneier.com / Schneier on Security
Friday Squid Blogging: Squid Purses
1 day, 23 hours ago |
www.schneier.com
The UK Bans Default Passwords
3 days, 9 hours ago |
www.schneier.com
Friday Squid Blogging: Searching for the Colossal Squid
1 week, 1 day ago |
www.schneier.com
Long Article on GM Spying on Its Cars’ Drivers
1 week, 2 days ago |
www.schneier.com
Jobs in InfoSec / Cybersecurity
Security Analyst
@ Northwestern Memorial Healthcare | Chicago, IL, United States
GRC Analyst
@ Richemont | Shelton, CT, US
Security Specialist
@ Peraton | Government Site, MD, United States
Information Assurance Security Specialist (IASS)
@ OBXtek Inc. | United States
Cyber Security Technology Analyst
@ Airbus | Bengaluru (Airbus)
Vice President, Cyber Operations Engineer
@ BlackRock | LO9-London - Drapers Gardens