Hide 'N Seek IoT Botnet Can Infect Database Servers

Ionut Arghire | July 10, 2018

Hide 'N Seek IoT Botnet Can Infect Database Servers
The Hide 'N Seek Internet of Things (IoT) botnet has recently added support for more devices and can also infect OrientDB and CouchDB database servers, Qihoo 360's NetLab researchers say. When first detailed in January this year, the botnet was evolving and spreading rapidly, ensnaring tens of thousands of devices within days. Targeting numerous vulnerabilities, the malware was capable of data exfiltration, code execution, and interference with the device operation. By early May, the malware had infected over 90,000 devices, added code to target more vulnerabilities, and also adopted persistence, being able to survive reboots. The persistence module, however, would only kick in if the infection was performed over the Telnet service. A peer-to-peer (P2P) botnet, Hide 'N Seek has continued to evolve, and is currently targeting even more vulnerabilities than before. The botnet now also includes exploits for AVTECH devices (webcam) and Cisco Linksys routers, Qihoo 360's NetLab reveals.  Furthermore, the malware now includes 171 hardcoded P2P node addresses, has added a crypto-currency mining program to its code, and has also evolved into a cross-platform threat, with the addition of support for OrientDB and CouchDB database servers. The botnet’s spreading mechanism includes a scanner borrowed from Mirai, targeting fixed TCP port 80/8080/2480/5984/23 and other random ports.  For infection, the malware attempts remote code execution using exploits targeting TPLink Routers, Netgear routers (also targeted by Reaper botnet and Mirai variant Wicked), AVTECH cameras, Cisco Linksys Routers, JAW/1.0, OrientDB, and Apache CouchDB.

Spotlight

Powerpoint has many uses but most notably is its presence as a presentation powerhouse, but many of us may not know how to use the handy software to its full advantage and could face ourselves in an embarrassing presentation fail during a conference.


Other News
SOFTWARE

Arqit Introduces QuantumCloudTM to Provide Stronger, Easier Encryption

Arqit | August 02, 2021

Arqit Limited (“Arqit”), a pioneer in quantum encryption technology, unveils the launching of QuantumCloudTM 1.0, the initial version of its service. Customers can use this PlatformasaService software to protect the communications channels and data of any cloud, edge, or endpoint device. The service combines transformative and one-of-a-kind improvements in quantum and classical cryptography. The release of QuantumCloudTM 1.0 enables users to secure devices internationally by offering a robust device authentication capability, on top of which the agreement of symmetric keys between authenticated and authorised devices is implemented. Crucially, because the trustless...

Read More

SOFTWARE

Cure, The Industry's First Self-Repairing Software, Is Released By Whitesource

WhiteSource | July 30, 2021

WhiteSource Cure, the first-ever security auto-remediation programme developed for bespoke code, was released today. This ground-breaking release enables enterprises to increase the speed with which safe software is delivered at scale. Today's software developers and security professionals are struggling to resolve an ever-growing backlog of security vulnerabilities while adhering to ambitious delivery timetables. Indeed, according to WhiteSource customer feedback, the average developer effort for a single security repair is about half a day, which can lead to significant delays in product deliveries. WhiteSource Cure functions as a developer's personal security specia...

Read More

SOFTWARE

Ampere Will Purchase Onspecta In Order to Accelerate AI Inference on Cloud-Native Applications

Ampere | July 29, 2021

Ampere® Computing announced today that it has agreed to purchase the AI technology firm OnSpecta, which will improve Ampere® Altra® performance with AI inference applications. The OnSpecta Deep Learning Software (DLS) AI optimization engine can significantly outperform commonly used CPU-based machine learning (ML) frameworks. The businesses have already worked together and showed over 4x acceleration on Ampere-based instances performing typical AI-inference workloads. An optimised model zoo with object identification, video processing, and recommendation engines will be included in the acquisition. The terms of the transaction were not disclosed, but it is expected to conc...

Read More

SOFTWARE

Nintex Workflow Cloud Now Includes AI-Based Capabilities and Integrations

Nintex | July 28, 2021

Nintex, the global system for process management and automation, announced today the latest enhancements to its next generation Nintex Workflow Cloud, which is designed for operations, IT, process professionals, and system administrators to reform the way employees work by making it quicker and easier to manage, digitise, and optimise business processes and workflows. The following are some of the most desired new features and functionality in Nintex Workflow Cloud's current release: Intelligent PDF Form Converter - This AI-powered tool converts static PDFs into interactive digital forms in real time. Nintex W...

Read More

Spotlight

Powerpoint has many uses but most notably is its presence as a presentation powerhouse, but many of us may not know how to use the handy software to its full advantage and could face ourselves in an embarrassing presentation fail during a conference.

Resources

Events