• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   BASHLITE

Back-to-Back Campaigns: Neko, Mirai, and Bashlite Malware Variants Use Various Exploits to Target Several Routers, Devices

  • Posted on:August 13, 2019 at 4:52 am
  • Posted in:Botnets, Malware
  • Author:
    Trend Micro
0

By Augusto Remillano II and Jakub Urbanec Within a span of three weeks, our telemetry uncovered three notable malware variants of Neko, Mirai, and Bashlite. On July 22, 2019, we saw and started analyzing a Neko botnet sample, then observed another sample with additional exploits the following week.  A Mirai variant that calls itself “Asher”…

Read More
Tags: BASHLITEBotnetsMiraiNekoRouter malware

Bashlite IoT Malware Updated with Mining and Backdoor Commands, Targets WeMo Devices

  • Posted on:April 3, 2019 at 1:16 am
  • Posted in:Botnets, Exploits, Internet of Things, Malware
  • Author:
    Trend Micro
0

We uncovered an updated Bashlite malware designed to add infected internet-of-things devices to a distributed-denial-of-service (DDoS) botnet. Based on the Metasploit module it exploits, the malware targets devices with the WeMo Universal Plug and Play (UPnP) application programming interface (API).

This updated iteration of Bashlite is notable. For one, its arrival method is unique in that it doesn’t rely on specific vulnerabilities (e.g., security flaws assigned with CVEs). It instead abuses a publicly available remote-code-execution (RCE) Metasploit module.  It now also sports additional DDoS-related commands, and added new ones that gave the malware cryptocurrency mining and backdoor capabilities. It can also deliver malware that removes competing botnet malware.

Read More
Tags: BASHLITEinternet of thingsMetasploit

One Year After Shellshock, Are Your Servers and Devices Safer?

  • Posted on:September 24, 2015 at 7:04 am
  • Posted in:Vulnerabilities
  • Author:
    Trend Micro
0

Security researchers were the first to respond during the Shellshock attacks of 2014. After news of the fatal flaw in the prevalent Bash (Bourne Again Shell)— found in most versions of the Unix and Linux operating systems as well as in Mac OSX —was released, researchers started looking into how it can be used against affected web…

Read More
Tags: bashBASHLITEshellshock

Summary of Shellshock-Related Stories and Materials

  • Posted on:September 29, 2014 at 1:09 am
  • Posted in:Malware, Vulnerabilities
  • Author:
    Trend Micro
0

Our coverage on the Bash bug vulnerability (more popularly known as “Shellshock”) continues as we spot new developments on Shellshock-related threats and attacks. Here is a list of our stories related to this threat: Shellshock: A Technical Report – this technical brief describes the vulnerability in detail, as well as outlying which platforms are affected….

Read More
Tags: bash bug vulnerabilityBash vulnerabilityBASHLITEExploitshellshockvulnerability

Shellshock Updates: BASHLITE C&Cs Seen, Shellshock Exploit Attempts in Brazil

  • Posted on:September 26, 2014 at 8:57 pm
  • Posted in:Exploits, Malware, Vulnerabilities
  • Author:
    Trend Micro
0

We have another update regarding Shellshock vulnerability. In a previous blog entry, we mentioned about a DDoS attack against institutions that depicted the gravity of the vulnerability’s real-world impact. Based on our analysis, the backdoor that was used in this DDoS attack is somewhat related to the previous Shellshock exploits we have seen. It appears that…

Read More
Tags: bash shellBash vulnerabilityBASHLITEbig bad bashDDoSExploitLinuxshellshock
Page 1 of 212

Security Predictions for 2020

  • Cybersecurity in 2020 will be viewed through many lenses — from differing attacker motivations and cybercriminal arsenal to technological developments and global threat intelligence — only so defenders can keep up with the broad range of threats.
    Read our security predictions for 2020.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

Sorry. No data so far.

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.