all InfoSec news
RUBYCARP: A Detailed Analysis of a Sophisticated Decade-Old Botnet Group
Malware Analysis, News and Indicators - Latest topics malware.news
The Sysdig Threat Research Team (Sysdig TRT) recently discovered a long-running botnet operated by a Romanian threat actor group, which we are calling RUBYCARP. Evidence suggests that this threat actor has been active for at least 10 years. Its primary method of operation leverages a botnet deployed using a variety of public exploits and brute force attacks. This group communicates via public and private IRC networks, develops cyber weapons and targeting data, and uses its botnet for financial gain via …
actor analysis botnet calling evidence old research running sysdig sysdig threat research team team threat threat actor threat research