Cyberattackers are targeting Linux SSH servers with ShellBot malware. Utilising hexadecimal IP addresses, the perpetrators can evade detection in most URL-based detection signatures. ShellBot leverages weak SSH credentials to compromise servers, subsequently initiating DDoS attacks or deploying payloads like cryptominers on infected machines. Administrators are urged to maintain strong passwords and regularly update credentials to mitigate the threat.
PTZOptics cameras zero-days actively exploited in the wild
GreyNoise researchers have discovered hackers exploiting two zero-day vulnerabilities in PTZOptics live streaming cameras. The flaws, which allow access to sensitive information and enable execution