Friday, August 14, 14:49
Home security Hackers turn to botnets for network violations

Hackers turn to botnets for network violations

hacker

The ransomware, is one of the most popular species attack, which is constantly being reformulated. At 2019 the malware builds alliances to target large public and corporate networks. Back to 2018, the hackers behind it GandCrab ransomware started it Ransomware-as-a-Service, which shifts the template and transforms ransomware into a comprehensive Branding, Marketing and Display business.

The Truniger team

The Truniger hacking team, also known as TeamSnatch, was created by a malicious agent who had shown particular interest in scams with credit cards. The team is taking advantage vulnerabilities based on RDP and brute-force attacks to gain access to various RDP databases.

According to Advintel's report, the attack was particularly effective, so the hacking team began looking for new ways to make money from its violations.

So the Truniger team managed to encrypt more than 1.800 Appliances using GandCrab until the end of August 2018. The hacker behind the creation of the team said that by joining GandCrab's affiliate program, he learned the methods for carrying out sophisticated attacks.

The hacker then decided to create his own Ransomware and further expand the team, hiring technicians to help him with his business, offering them up to 10.000 USD a month.

Tools and techniques used

The team hacking uses many techniques to share ransomware, the most common being RDP brute-forcing.

Truniger is trying to gain Windows system administrator rights by using the mimikatz tool to search for domain administrator credentials, financial information and perform escalation privileges.

The team told AdvIntel that it focuses on dedicated RDP servers and is interested in Dynamic Data Exchange (DDE).

One of the most well-known attacks of the organization is that it took place in the German IT company CityComp and received data from companies such as Oracle, SAP, BT, Porsche, Toshiba, Volkswagen, Airbus and more.

The team has also made known its access to various other RDP networks linked to government networks and retail stores.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

6 ways your location can be traced through your iPhone!

Your iPhone can be configured to show your location in real time to anyone. Also indicates your location ...

How to delete your Spotify account?

Have you decided to stop using Spotify and want to close your account permanently? See how ...

Holidays, baths, public WiFi: Guess which one not to choose?

Holidays, baths, public WiFi: Guess which one not to choose? August is here and most are getting ready for their summer vacation ....

Cyber ​​Security Career: Why Choose It Now?

With unemployment being at very high levels due to the coronavirus and with companies trying to restructure companies ...

Get MIUI 12 "Focus Mode" on any Xiaomi device

Focus Mode is one of the best features of MIUI 12. This feature was first introduced in MIUI 11, but there are ...

The 20 best gaming consoles of all time

On the threshold of the new generation of consoles, such as the PlayStation 5 and the Xbox Series X, these are the most important and ...

Smart locks: Every home needs to have one!

Home security is a complex issue, but anything is safer than hiding a spare key in a very ...

LinkedIn: How do you record and display the pronunciation of your name?

Having a last name that almost no one pronounces correctly can sometimes be annoying. Thus, LinkedIn attempts ...

Cyber ​​attacks: 5 steps to deal with security incidents

Every organization is prone to cyber attacks and, when it happens, there is a small line between rescuing your network security and ...

Protect your personal data while on vacation

Have you had the chance to go on vacation and lose your passport, your wallet or other ...