AhnLab Security Emergency Response Center (ASEC) researchers have discovered a DDoS-as-a-Service campaign by the ‘Ddostf’ malware botnet, which targets MySQL servers. The botnet enslaves breached servers by exploiting vulnerabilities in unpatched MySQL environments or brute-forcing weak administrator account credentials. To defend against the attack, the researchers recommend applying the latest updates and creating long, unique passwords.
Rogue VPN servers used to spread malware via malicious updates
AmberWolf researchers identified two vulnerabilities, dubbed “NachoVPN,” in popular VPN products SonicWall NetExtender and Palo Alto Networks GlobalProtect, which can be exploited by cyber-attackers to
