all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

The Darkside of TheMoon

Add to bookmarks
March 26, 2024, 3:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Executive Summary


The Black Lotus Labs team at Lumen Technologies has identified a multi-year campaign targeting end-of-life (EoL) small home/small office (SOHO) routers and IoT devices, associated with an updated version of “TheMoon” malware. TheMoon, which emerged in 2014, has been operating quietly while growing to over 40,000 bots from 88 countries in January and February of 2024. As our team has discovered, the majority of these bots are used as the foundation of a notorious, cybercriminal-focused proxy …

black lotus black lotus labs bots campaign countries darkside devices end end-of-life eol executive february home iot iot devices january labs life lumen lumen technologies malware office routers soho targeting team technologies version

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Lurking npm package makes the case for open source health checks 55 minutes ago | malware.news
case easy health health checks +19
Federal Reserve “breached” data may actually belong to Evolve Bank an hour ago | malware.news
bank banking breached central +22
Over 100K sites hit by Polyfill.io supply chain attack an hour ago | malware.news
acquisition analytics article attack +13
Supply chain attack compromises WordPress plugins an hour ago | malware.news
account admin article attack +16
Medusa Android trojan returns with more compact variants an hour ago | malware.news
android android trojan apps article +10
Allegedly stolen Federal Reserve data exposed by LockBit an hour ago | malware.news
archives article as-a-service bank +20
Snowflake breach fallout adds Neiman Marcus an hour ago | malware.news
account article breach compromised +9
Geisinger attributes breach to Microsoft subsidiary an hour ago | malware.news
addresses arrested article attributes +13
Phishing attack launched against Any.Run an hour ago | malware.news
any.run article attack business +15

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Vice President, Controls Design & Development-7

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Vice President, Controls Design & Development-5

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Data Scientist & AI Prompt Engineer

@ Varonis | Israel
View on infosec-jobs.com

Contractor

@ Birlasoft | INDIA - MUMBAI - BIRLASOFT OFFICE, IN
View on infosec-jobs.com