• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   BASHLITE

Bashlite IoT Malware Updated with Mining and Backdoor Commands, Targets WeMo Devices
  • Posted on:April 3, 2019 at 1:16 am
  • Posted in:Botnets, Exploits, Internet of Things, Malware
  • Author:
    Trend Micro
0

We uncovered an updated Bashlite malware designed to add infected internet-of-things devices to a distributed-denial-of-service (DDoS) botnet. Based on the Metasploit module it exploits, the malware targets devices with the WeMo Universal Plug and Play (UPnP) application programming interface (API).

This updated iteration of Bashlite is notable. For one, its arrival method is unique in that it doesn’t rely on specific vulnerabilities (e.g., security flaws assigned with CVEs). It instead abuses a publicly available remote-code-execution (RCE) Metasploit module.  It now also sports additional DDoS-related commands, and added new ones that gave the malware cryptocurrency mining and backdoor capabilities. It can also deliver malware that removes competing botnet malware.

Read More
Tags: BASHLITEinternet of thingsMetasploit

One Year After Shellshock, Are Your Servers and Devices Safer?
  • Posted on:September 24, 2015 at 7:04 am
  • Posted in:Vulnerabilities
  • Author:
    Trend Micro
0

Security researchers were the first to respond during the Shellshock attacks of 2014. After news of the fatal flaw in the prevalent Bash (Bourne Again Shell)— found in most versions of the Unix and Linux operating systems as well as in Mac OSX —was released, researchers started looking into how it can be used against affected web…

Read More
Tags: bashBASHLITEshellshock

Summary of Shellshock-Related Stories and Materials
  • Posted on:September 29, 2014 at 1:09 am
  • Posted in:Malware, Vulnerabilities
  • Author:
    Trend Micro
0

Our coverage on the Bash bug vulnerability (more popularly known as “Shellshock”) continues as we spot new developments on Shellshock-related threats and attacks. Here is a list of our stories related to this threat: Shellshock: A Technical Report – this technical brief describes the vulnerability in detail, as well as outlying which platforms are affected….

Read More
Tags: bash bug vulnerabilityBash vulnerabilityBASHLITEExploitshellshockvulnerability

Shellshock Updates: BASHLITE C&Cs Seen, Shellshock Exploit Attempts in Brazil
  • Posted on:September 26, 2014 at 8:57 pm
  • Posted in:Exploits, Malware, Vulnerabilities
  • Author:
    Trend Micro
0

We have another update regarding Shellshock vulnerability. In a previous blog entry, we mentioned about a DDoS attack against institutions that depicted the gravity of the vulnerability’s real-world impact. Based on our analysis, the backdoor that was used in this DDoS attack is somewhat related to the previous Shellshock exploits we have seen. It appears that…

Read More
Tags: bash shellBash vulnerabilityBASHLITEbig bad bashDDoSExploitLinuxshellshock

Shellshock – How Bad Can It Get?
  • Posted on:September 26, 2014 at 1:21 am
  • Posted in:Exploits, Vulnerabilities
  • Author:
    Trend Micro
0

In the immediate aftermath of the Bash vulnerability known as Shellshock, we have already seen some attacks using it to deliver DDoS malware onto Linux systems. However, given the severity of this vulnerability, it is almost certain that we will see bigger, severer attacks. What are some of the scenarios we could potentially see? Servers Web servers are currently…

Read More
Tags: bash bugBash vulnerabilityBASHLITEExploitFLOODERLinuxshellshockShellshock attackvulnerability
Page 1 of 212

Security Predictions for 2019

  • Our security predictions for 2019 are based on our experts’ analysis of the progress of current and emerging technologies, user behavior, and market trends, and their impact on the threat landscape. We have categorized them according to the main areas that are likely to be affected, given the sprawling nature of the technological and sociopolitical changes under consideration.
    Read our security predictions for 2019.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

  • May’s Patch Tuesday Include Fixes for ‘Wormable’ Flaw in Windows XP, Zero-Day Vulnerability
  • New Mirai Variant Uses Multiple Exploits to Target Routers and Other Devices
  • Misconfigured Container Abused to Deliver Cryptocurrency-mining Malware
  • Exposed Docker Control API and Community Image Abused to Deliver Cryptocurrency-Mining Malware
  • AESDDoS Botnet Malware Exploits CVE-2019-3396 to Perform Remote Code Execution, DDoS Attacks, and Cryptocurrency Mining

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.