Known Threat Actor Develops Malware Downloader

Kacy Zurkus | June 25, 2018

Known Threat Actor Develops Malware Downloader
A known malicious actor who goes by the username Yattaze has been selling a malware downloader, Kardon Loader, as a paid open beta product, which Netscout Arbor believes is a rebranding of the cyber-criminal’s ZeroCool botnet. Advertised on underground forums since late April, the malware downloader has full bot capabilities and is offered at a starting price of $50 BTC for the standard version and $70 BTC for the botshop. According to a recent post from Netscout Arbor, “the actor offers the sale of the malware as a standalone build with charges for each additional rebuild, or the ability to set up a botshop in which case any customer can establish their own operation and further sell access to a new customer base.” Customers on underground forums are invited to join the project and start their own network using the Kardon Loader, which claims to be extremely stable and capable of holding large amounts of clients. The relatively small size of the malware (10kb), which is still in development, reportedly sets it apart from other malware downloaders currently available. It is also is advertised as being specifically programmed for crypter compatibility. Malware downloaders and botshops are often used by malware authors and distributors to both create botnets and distribute additional payloads. Those payloads – run by third-party operators of malware distribution networks – can include credentials theft, ransomware and banking Trojans, however, Yattaze used a disclaimer in the Kardon ad stating that the software should not be used for malicious purposes, but that it is “for personal use and educational purposes only, you take full responsibility for any type of misuse of the software.”

Spotlight

An overwhelming torrent of data has been unleashed due to Big Data, cloud computing, social media, mobility and the Internet of Things. The average enterprise struggles to provide enough storage capacity to house this data. Further, many have realized that the old patchwork of point products for dat


Other News
DATA SECURITY

Cynalytica Delivers New Solution to Help Combat Cyber Threats to Maritime Navigation and Communication Systems

Cynalytica | September 20, 2021

Cynalytica Inc. announces its SerialGuard AnalytICS Platform now offers monitoring, deep packet inspection (DPI) support, and intrusion detection for legacy NMEA protocols. Its latest extension provides enhanced situational awareness and security to vulnerable maritime Industrial Control Systems (ICS) through NMEA-specific packet evaluations, analysis, and intrusion detection capabilities. "In addition to the serious threats posed to their OT network, one of the maritime industry's biggest security challenges today is the protection of their navigation and communications systems from persistent cyber threats. Vessels are increasingly vulnerable to cyber attacks that c...

Read More

SOFTWARE SECURITY

IPKeys Power Partners Announces New Grid Cyber Security Breakthrough

IPKeys | September 09, 2021

IPKeys Power Partners, the leading cybersecurity, cyber compliance, and smart grid technology company, announced today the release of its groundbreaking SigmaFlow Beacon platform to provide utilities, generators, and grid operators a simple, unified solution for cybersecurity monitoring and compliance requirements. The SigmaFlow Beacon platform is built specifically to help organizations align with North American Electric Reliability Corp. (NERC) compliance mandates. It provides NERC registered entities with a single solution to advance, simplify and improve existing cybersecurity and monitoring requirements. "We are pleased to provide utilities, generators...

Read More

PLATFORM SECURITY

Stellar Cyber Partners with SonicWall for Advanced Prevention, Response

Stellar | September 08, 2021

Stellar Cyber, the innovator of Open XDR, the only intelligent, next-gen security operations platform, announced today that it has joined the SonicWall SecureFirst Partner Program to integrate Stellar Cyber’s advanced threat detection and response with SonicWall’s award-winning prevention technology. This combination of prevention, detection and response provides an outstanding platform for enterprises that want to stop many attacks before they occur while detecting and remediating complex threats. “As a customer of both SonicWall and Stellar Cyber, it’s great to see these two solutions working together,” said Michael Crean, CEO of Solutions Grant...

Read More

SOFTWARE SECURITY

Minimize Cybersecurity Risk and Relieve Overstretched Security Teams with Trend Micro Support and Service Bundles

Trend Micro Incorporated | September 07, 2021

Trend Micro Incorporated a global cybersecurity leader, today announced the launch of Trend Micro Service One, consolidating its managed services to optimize enterprise threat management. The new services bundles, which can include premium support, an early warning service, Managed XDR and incident response, help customers prevent, detect and respond to cyber threats faster by supplementing internal resources. The prevalence of cybersecurity threats and the dynamic threat landscape leave businesses vulnerable and put security experts in high demand to triage and investigate incidents. According to Aaron Sherrill, Senior Research Analyst at 451 Research, part of ...

Read More

Spotlight

An overwhelming torrent of data has been unleashed due to Big Data, cloud computing, social media, mobility and the Internet of Things. The average enterprise struggles to provide enough storage capacity to house this data. Further, many have realized that the old patchwork of point products for dat

Resources

Events