Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems

January 13, 2025
No Comments

Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems

No less than 4,000 unique web backdoors previously deployed by various threat actors have been hijacked by taking control of abandoned and expired infrastructure for as little as $20 per domain.
Cybersecurity company watchTowr Labs said it pulled off the operation by registering over 40 domain names that the backdoors had been designed to use for command-and-control (C2). In partnership with the

Leave a Reply Cancel reply

Three Russian Nationals Indicted for Operating Cryptocurrency Mixers in Money Laundering Scheme January 13, 2025
Three Russian nationals have been charged for their involvement in operating cryptocurrency mixing services Blender.io and Sinbad.io, according to an indictment unsealed on January 7 by a federal grand jury in the Northern District of Georgia. The charges stem from an extensive investigation into the laundering of criminal proceeds through these platforms, which authorities allege […]
Kirsten Doyle
Medusind Data Breach Exposes Over 360,000 Individuals’ Healthcare Info January 13, 2025
Medusind, a healthcare revenue cycle management provider, has disclosed a data breach that compromised the personal and health information of 360,934 people. The breach, which happened over a year ago, affirms the ongoing cybersecurity challenges in the healthcare sector. The company, which operates 12 locations across the US and India and supports more than 6,000 […]
Kirsten Doyle
New Banshee Malware Targeting macOS Users Remained Undetected for Months January 10, 2025
Check Point Research (CPR) has uncovered a sophisticated new version of the Banshee macOS Stealer malware, capable of stealing browser credentials, cryptocurrency wallets, and other sensitive data. This latest version, undetected for over two months, raises alarms for macOS users worldwide. macOS has long been seen as a secure platform, but with over 100 million […]
Kirsten Doyle
Huge Changes Predicted for the Data Privacy Landscape January 10, 2025
Although 2025 is now well underway, it’s not too late to ponder what the year will bring. The coming year is set to witness huge changes in the data privacy landscape, and there’s no harm in trying to stay ahead of the curve. With this in mind, Information Security Buzz spoke to Roderick Rosenburg, founder […]
Josh Breaker Rolfe
NFL Giants Green Bay Have Their Online Defense Breached January 10, 2025
Whilst the four-time Superbowl Champions, The Green Packers, have rightly been drawing praise this season for their on-field defensive performances, the Organization’s online defense has been called into question following the disclosure of a significant data breach affecting thousands of their loyal supporters. Contrasting Fortunes The last week of 2024 saw the storied franchise triumph […]
Adam Parlett
Important Preventative Strategies for Avoiding and Recovering from Ransomware Threats January 10, 2025
All organizations have their share of struggles when trying to scale successfully. Considering how competitive most industries have become, prioritizing operational agility is often critical and requires a high level of adaptability to gain and retain market share. However, while dealing with these issues is difficult, considering the ongoing rise in cybercrime, running a business […]
Nazy Fouladirad
It’s Time Businesses Address the UK’s Cybersecurity Talent Shortage January 9, 2025
UK Prime Minister Keir Starmer recently pledged to ‘Get Britain Working Again’. This comes as a new government whitepaper highlights a troubling rise in economic inactivity and stagnation in unemployment, currently hovering around 1.5 million. When we consider the UK’s cybersecurity sector, there is a major skills gap, presenting significant future employment opportunities. The government’s […]
Haris Pylarinos
Ivanti Warns of Active Exploitation of a Vulnerability in Connect Secure January 9, 2025
Organizations are urged to act swiftly to address vulnerabilities impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways by sticking to the latest guidance from the vendor. Ivanti has released a critical security update addressing these vulnerabilities, identified as CVE-2025-0282 and CVE-2025-0283. The fix is now available via Ivanti’s standard download portal. The company disclosed […]
Kirsten Doyle
VIPRE Security Shares Cybersecurity Trends for 2025 January 9, 2025
Last year saw increasingly sophisticated cybersecurity threats as malicious actors leveraged all forms of AI to create difficult-to-detect phishing attacks, deepfakes, and ransomware incidents. To counter these, organizations adopted AI-driven security solutions, including threat detection, automated incident response, and intelligent vulnerability management, to protect data and infrastructure. “In 2025, as AI evolves further in sophistication and […]
Kirsten Doyle
E-commerce Faced Heightened Cybersecurity Threats During Holiday Season January 8, 2025
While lucrative for e-commerce businesses, the holiday shopping season also brings a surge in cyber threats. A recent study by Liquid Web highlights a worrying trend: December, the most critical month for online retailers, sees a staggering 31% increase in cyberattacks compared to the yearly average. This means that while shoppers hunt for the perfect […]
Anastasios Arampatzis

Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems

WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables

⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [13 January]

Leave a Reply Cancel reply

[email protected]

Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems

Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems

Share :

Leave a Reply Cancel reply