#p2pinfect — Public Fediverse posts

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer
https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybercrime #Malware #Botnet #P2Pinfect

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer
https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybercrime #Malware #Botnet #P2Pinfect

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer
https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybercrime #Malware #Botnet #P2Pinfect

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer
https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybercrime #Malware #Botnet #P2Pinfect

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer
https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybercrime #Malware #Botnet #P2Pinfect

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybersecurity #Cryptominer #Ransomware #P2PInfect #Security #Malware #Botnet #Redis

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybersecurity #Cryptominer #Ransomware #P2PInfect #Security #Malware #Botnet #Redis

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybersecurity #Cryptominer #Ransomware #P2PInfect #Security #Malware #Botnet #Redis

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer https://hackread.com/p2pinfect-botnet-target-server-ransomware-cryptominer/ #Cybersecurity #Cryptominer #Ransomware #P2PInfect #Security #Malware #Botnet #Redis

From Dormant to Dangerous: P2Pinfect Evolves to Deploy New Ransomware and Cryptominer
#P2PInfect
https://www.cadosecurity.com/blog/from-dormant-to-dangerous-p2pinfect-evolves-to-deploy-new-ransomware-and-cryptominer

From Dormant to Dangerous: P2Pinfect Evolves to Deploy New Ransomware and Cryptominer
#P2PInfect
https://www.cadosecurity.com/blog/from-dormant-to-dangerous-p2pinfect-evolves-to-deploy-new-ransomware-and-cryptominer

From Dormant to Dangerous: P2Pinfect Evolves to Deploy New Ransomware and Cryptominer
#P2PInfect
https://www.cadosecurity.com/blog/from-dormant-to-dangerous-p2pinfect-evolves-to-deploy-new-ransomware-and-cryptominer

Mentioned Malware Families: P2Pinfect, P2Pinfect

Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect
Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect

#P2Pinfect #P2Pinfect

Aliases provided by Malpedia.

Mentioned Malware Families: P2Pinfect, P2Pinfect

Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect
Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect

#P2Pinfect #P2Pinfect

Aliases provided by Malpedia.

Mentioned Malware Families: P2Pinfect, P2Pinfect

Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect
Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect

#P2Pinfect #P2Pinfect

Aliases provided by Malpedia.

Mentioned Malware Families: P2Pinfect, P2Pinfect

Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect
Aliases for P2Pinfect: elf.p2pinfect
Malpedia link for P2Pinfect: https://malpedia.caad.fkie.fraunhofer.de/details/elf.p2pinfect

#P2Pinfect #P2Pinfect

Aliases provided by Malpedia.

Found a #P2Pinfect sample that's available on VT: 7ca878dc7c8a9b9e9b54faf9b1b354e657ad890ba2cf67b26f3d66d1a7757479

Found a #P2Pinfect sample that's available on VT: 7ca878dc7c8a9b9e9b54faf9b1b354e657ad890ba2cf67b26f3d66d1a7757479

Found a #P2Pinfect sample that's available on VT: 7ca878dc7c8a9b9e9b54faf9b1b354e657ad890ba2cf67b26f3d66d1a7757479

Found a #P2Pinfect sample that's available on VT: 7ca878dc7c8a9b9e9b54faf9b1b354e657ad890ba2cf67b26f3d66d1a7757479

Currently looking into #P2Pinfect malware. Seems to be difficult to source a sample. Anybody got one?

Currently looking into #P2Pinfect malware. Seems to be difficult to source a sample. Anybody got one?

Currently looking into #P2Pinfect malware. Seems to be difficult to source a sample. Anybody got one?

Currently looking into #P2Pinfect malware. Seems to be difficult to source a sample. Anybody got one?

During the scanning phase, the brute-force attempts against SSH servers leverage common username and password pairs embedded within the ELF binary itself.

#Cybersecurity #IoT #Malware #MIPS #Botnet #Routers #P2PInfect #SSH

https://cybersec84.wordpress.com/2023/12/04/new-p2pinfect-botnet-threatens-routers-and-iot-devices-with-mips-variant/

During the scanning phase, the brute-force attempts against SSH servers leverage common username and password pairs embedded within the ELF binary itself.

#Cybersecurity #IoT #Malware #MIPS #Botnet #Routers #P2PInfect #SSH

https://cybersec84.wordpress.com/2023/12/04/new-p2pinfect-botnet-threatens-routers-and-iot-devices-with-mips-variant/

During the scanning phase, the brute-force attempts against SSH servers leverage common username and password pairs embedded within the ELF binary itself.

#Cybersecurity #IoT #Malware #MIPS #Botnet #Routers #P2PInfect #SSH

https://cybersec84.wordpress.com/2023/12/04/new-p2pinfect-botnet-threatens-routers-and-iot-devices-with-mips-variant/

During the scanning phase, the brute-force attempts against SSH servers leverage common username and password pairs embedded within the ELF binary itself.

#Cybersecurity #IoT #Malware #MIPS #Botnet #Routers #P2PInfect #SSH

https://cybersec84.wordpress.com/2023/12/04/new-p2pinfect-botnet-threatens-routers-and-iot-devices-with-mips-variant/

During the scanning phase, the brute-force attempts against SSH servers leverage common username and password pairs embedded within the ELF binary itself.

#Cybersecurity #IoT #Malware #MIPS #Botnet #Routers #P2PInfect #SSH

https://cybersec84.wordpress.com/2023/12/04/new-p2pinfect-botnet-threatens-routers-and-iot-devices-with-mips-variant/

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology
#technology #tech #technews

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology
#technology #tech #technews

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology
#technology #tech #technews

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology

P2PInfect malware variant targets IoT devices https://www.iottechnews.com/news/2023/dec/04/p2pinfect-malware-variant-targets-iot-devices/ #p2pinfect #iot #cybersecurity #hacking #infosec #security #news #tech #technology

The majority of compromised systems have been reported in China, the U.S., Germany, the U.K., Singapore, Hong Kong, and Japan.

#Cybersecurity #Malware #Cyberthreat #P2PInfect

https://cybersec84.wordpress.com/2023/09/22/p2pinfect-malware-activity-surges-600x/

The majority of compromised systems have been reported in China, the U.S., Germany, the U.K., Singapore, Hong Kong, and Japan.

#Cybersecurity #Malware #Cyberthreat #P2PInfect

https://cybersec84.wordpress.com/2023/09/22/p2pinfect-malware-activity-surges-600x/

The majority of compromised systems have been reported in China, the U.S., Germany, the U.K., Singapore, Hong Kong, and Japan.

#Cybersecurity #Malware #Cyberthreat #P2PInfect

https://cybersec84.wordpress.com/2023/09/22/p2pinfect-malware-activity-surges-600x/

The majority of compromised systems have been reported in China, the U.S., Germany, the U.K., Singapore, Hong Kong, and Japan.

#Cybersecurity #Malware #Cyberthreat #P2PInfect

https://cybersec84.wordpress.com/2023/09/22/p2pinfect-malware-activity-surges-600x/

The majority of compromised systems have been reported in China, the U.S., Germany, the U.K., Singapore, Hong Kong, and Japan.

#Cybersecurity #Malware #Cyberthreat #P2PInfect

https://cybersec84.wordpress.com/2023/09/22/p2pinfect-malware-activity-surges-600x/

🚨 BREAKING: A highly sophisticated P2P worm named "P2PInfect" is wreaking havoc on Redis instances! 🐛💻 It exploits the critical CVE-2022-0543 vulnerability in the Lua Library with a 10.0 severity score on CVSSv3 scale. Once in, it alters firewalls, granting unrestricted access to operators. 😱

P2PInfect establishes a P2P connection via port 60100 to a large C2 botnet, but no evidence of cryptomining yet. 😮 934 out of 307,000 Redis instances have already fallen victim. 😨

What's scarier? P2PInfect is using Rust, favored by ransomware groups for fast encryption and evading detection. 🦾

🔒 Stay safe! Update your Redis and amp up your cybersecurity practices NOW! 🔒

Source: Unit 42 researchers https://www.hackread.com/self-replicating-p2pinfect-worm-redis-instances/

Key points:
- The worm, known as P2PInfect, is written in Rust and targets the popular open-source database software Redis.
- It exploits a critical vulnerability (CVE-2022-0543) in the Lua Library, which has a severity score of 10.0 on the CVSSv3 scale.
- Once inside a Redis instance, the worm alters local firewall settings, blocking legitimate access and granting unrestricted access to the worm operators.
- The worm establishes a P2P connection via port 60100 to a large command and control (C2) botnet. There's no evidence yet of P2PInfect engaging in cryptomining using infected instances.
- The worm's rapid spread has been noted, with 934 out of 307,000 publicly-communicating Redis instances identified as vulnerable.
- The use of Rust by P2PInfect is concerning as many ransomware groups have shifted to Rust for its benefits, such as faster encryption and evading common detection methods.
- Organizations and individuals are urged to update their Redis instances and implement robust cybersecurity practices to safeguard against potential attacks.

A highly sophisticated peer-to-peer (P2P) worm named "P2PInfect" has been identified by researchers from Unit 42. It targets instances of the popular open-source database software Redis, exploiting a critical vulnerability known as CVE-2022-0543 in the Lua Library. This vulnerability has received a maximum severity score of 10.0 on the CVSSv3 severity scale. Once inside a Redis instance, the worm establishes a foothold in cloud container environments, alters firewall settings, and grants the operators unrestricted access. P2PInfect employs sophisticated techniques for persistence, ensuring long-term presence on infected systems. It establishes a P2P connection to a large command and control botnet, raising concerns about potential future mining activities.

P2PInfect's use of the Rust programming language is unique and concerning to cybersecurity experts, as it offers benefits such as faster encryption and evading common detection methods. The worm's rapid spread has been observed, and organizations are urged to update their Redis instances and implement robust cybersecurity practices. The cybersecurity community must remain vigilant against emerging threats like P2PInfect and other advanced malware strains.

#P2PInfect
#CybersecurityAlert
#Redis
#RustLang
#CVE20220543
#CyberThreat
#Botnet
#CyberAttack
#InfoSec
#Unit42

Vorsicht: Rust-basierter Wurm greift Windows- und Linux-Server an
https://winfuture.de/news,137520.html#amp_tf=Von%20%251%24s&aoh=16900931550204&csi=0&referrer=https%3A%2F%2Fwww.google.com&ampshare=https%3A%2F%2Fwinfuture.de%2Fnews%2C137520.html #Cybercrime #Malware #Computerwurm #P2PInfect

🚨 BREAKING: A highly sophisticated P2P worm named "P2PInfect" is wreaking havoc on Redis instances! 🐛💻 It exploits the critical CVE-2022-0543 vulnerability in the Lua Library with a 10.0 severity score on CVSSv3 scale. Once in, it alters firewalls, granting unrestricted access to operators. 😱

P2PInfect establishes a P2P connection via port 60100 to a large C2 botnet, but no evidence of cryptomining yet. 😮 934 out of 307,000 Redis instances have already fallen victim. 😨

What's scarier? P2PInfect is using Rust, favored by ransomware groups for fast encryption and evading detection. 🦾

🔒 Stay safe! Update your Redis and amp up your cybersecurity practices NOW! 🔒

Source: Unit 42 researchers https://www.hackread.com/self-replicating-p2pinfect-worm-redis-instances/

Key points:
- The worm, known as P2PInfect, is written in Rust and targets the popular open-source database software Redis.
- It exploits a critical vulnerability (CVE-2022-0543) in the Lua Library, which has a severity score of 10.0 on the CVSSv3 scale.
- Once inside a Redis instance, the worm alters local firewall settings, blocking legitimate access and granting unrestricted access to the worm operators.
- The worm establishes a P2P connection via port 60100 to a large command and control (C2) botnet. There's no evidence yet of P2PInfect engaging in cryptomining using infected instances.
- The worm's rapid spread has been noted, with 934 out of 307,000 publicly-communicating Redis instances identified as vulnerable.
- The use of Rust by P2PInfect is concerning as many ransomware groups have shifted to Rust for its benefits, such as faster encryption and evading common detection methods.
- Organizations and individuals are urged to update their Redis instances and implement robust cybersecurity practices to safeguard against potential attacks.

A highly sophisticated peer-to-peer (P2P) worm named "P2PInfect" has been identified by researchers from Unit 42. It targets instances of the popular open-source database software Redis, exploiting a critical vulnerability known as CVE-2022-0543 in the Lua Library. This vulnerability has received a maximum severity score of 10.0 on the CVSSv3 severity scale. Once inside a Redis instance, the worm establishes a foothold in cloud container environments, alters firewall settings, and grants the operators unrestricted access. P2PInfect employs sophisticated techniques for persistence, ensuring long-term presence on infected systems. It establishes a P2P connection to a large command and control botnet, raising concerns about potential future mining activities.

P2PInfect's use of the Rust programming language is unique and concerning to cybersecurity experts, as it offers benefits such as faster encryption and evading common detection methods. The worm's rapid spread has been observed, and organizations are urged to update their Redis instances and implement robust cybersecurity practices. The cybersecurity community must remain vigilant against emerging threats like P2PInfect and other advanced malware strains.

#P2PInfect
#CybersecurityAlert
#Redis
#RustLang
#CVE20220543
#CyberThreat
#Botnet
#CyberAttack
#InfoSec
#Unit42

🚨 BREAKING: A highly sophisticated P2P worm named "P2PInfect" is wreaking havoc on Redis instances! 🐛💻 It exploits the critical CVE-2022-0543 vulnerability in the Lua Library with a 10.0 severity score on CVSSv3 scale. Once in, it alters firewalls, granting unrestricted access to operators. 😱

P2PInfect establishes a P2P connection via port 60100 to a large C2 botnet, but no evidence of cryptomining yet. 😮 934 out of 307,000 Redis instances have already fallen victim. 😨

What's scarier? P2PInfect is using Rust, favored by ransomware groups for fast encryption and evading detection. 🦾

🔒 Stay safe! Update your Redis and amp up your cybersecurity practices NOW! 🔒

Source: Unit 42 researchers https://www.hackread.com/self-replicating-p2pinfect-worm-redis-instances/

Key points:
- The worm, known as P2PInfect, is written in Rust and targets the popular open-source database software Redis.
- It exploits a critical vulnerability (CVE-2022-0543) in the Lua Library, which has a severity score of 10.0 on the CVSSv3 scale.
- Once inside a Redis instance, the worm alters local firewall settings, blocking legitimate access and granting unrestricted access to the worm operators.
- The worm establishes a P2P connection via port 60100 to a large command and control (C2) botnet. There's no evidence yet of P2PInfect engaging in cryptomining using infected instances.
- The worm's rapid spread has been noted, with 934 out of 307,000 publicly-communicating Redis instances identified as vulnerable.
- The use of Rust by P2PInfect is concerning as many ransomware groups have shifted to Rust for its benefits, such as faster encryption and evading common detection methods.
- Organizations and individuals are urged to update their Redis instances and implement robust cybersecurity practices to safeguard against potential attacks.

A highly sophisticated peer-to-peer (P2P) worm named "P2PInfect" has been identified by researchers from Unit 42. It targets instances of the popular open-source database software Redis, exploiting a critical vulnerability known as CVE-2022-0543 in the Lua Library. This vulnerability has received a maximum severity score of 10.0 on the CVSSv3 severity scale. Once inside a Redis instance, the worm establishes a foothold in cloud container environments, alters firewall settings, and grants the operators unrestricted access. P2PInfect employs sophisticated techniques for persistence, ensuring long-term presence on infected systems. It establishes a P2P connection to a large command and control botnet, raising concerns about potential future mining activities.

P2PInfect's use of the Rust programming language is unique and concerning to cybersecurity experts, as it offers benefits such as faster encryption and evading common detection methods. The worm's rapid spread has been observed, and organizations are urged to update their Redis instances and implement robust cybersecurity practices. The cybersecurity community must remain vigilant against emerging threats like P2PInfect and other advanced malware strains.

#P2PInfect
#CybersecurityAlert
#Redis
#RustLang
#CVE20220543
#CyberThreat
#Botnet
#CyberAttack
#InfoSec
#Unit42

🚨 BREAKING: A highly sophisticated P2P worm named "P2PInfect" is wreaking havoc on Redis instances! 🐛💻 It exploits the critical CVE-2022-0543 vulnerability in the Lua Library with a 10.0 severity score on CVSSv3 scale. Once in, it alters firewalls, granting unrestricted access to operators. 😱

P2PInfect establishes a P2P connection via port 60100 to a large C2 botnet, but no evidence of cryptomining yet. 😮 934 out of 307,000 Redis instances have already fallen victim. 😨

What's scarier? P2PInfect is using Rust, favored by ransomware groups for fast encryption and evading detection. 🦾

🔒 Stay safe! Update your Redis and amp up your cybersecurity practices NOW! 🔒

Source: Unit 42 researchers https://www.hackread.com/self-replicating-p2pinfect-worm-redis-instances/

Key points:
- The worm, known as P2PInfect, is written in Rust and targets the popular open-source database software Redis.
- It exploits a critical vulnerability (CVE-2022-0543) in the Lua Library, which has a severity score of 10.0 on the CVSSv3 scale.
- Once inside a Redis instance, the worm alters local firewall settings, blocking legitimate access and granting unrestricted access to the worm operators.
- The worm establishes a P2P connection via port 60100 to a large command and control (C2) botnet. There's no evidence yet of P2PInfect engaging in cryptomining using infected instances.
- The worm's rapid spread has been noted, with 934 out of 307,000 publicly-communicating Redis instances identified as vulnerable.
- The use of Rust by P2PInfect is concerning as many ransomware groups have shifted to Rust for its benefits, such as faster encryption and evading common detection methods.
- Organizations and individuals are urged to update their Redis instances and implement robust cybersecurity practices to safeguard against potential attacks.

A highly sophisticated peer-to-peer (P2P) worm named "P2PInfect" has been identified by researchers from Unit 42. It targets instances of the popular open-source database software Redis, exploiting a critical vulnerability known as CVE-2022-0543 in the Lua Library. This vulnerability has received a maximum severity score of 10.0 on the CVSSv3 severity scale. Once inside a Redis instance, the worm establishes a foothold in cloud container environments, alters firewall settings, and grants the operators unrestricted access. P2PInfect employs sophisticated techniques for persistence, ensuring long-term presence on infected systems. It establishes a P2P connection to a large command and control botnet, raising concerns about potential future mining activities.

P2PInfect's use of the Rust programming language is unique and concerning to cybersecurity experts, as it offers benefits such as faster encryption and evading common detection methods. The worm's rapid spread has been observed, and organizations are urged to update their Redis instances and implement robust cybersecurity practices. The cybersecurity community must remain vigilant against emerging threats like P2PInfect and other advanced malware strains.

#P2PInfect
#CybersecurityAlert
#Redis
#RustLang
#CVE20220543
#CyberThreat
#Botnet
#CyberAttack
#InfoSec
#Unit42

🚨 BREAKING: A highly sophisticated P2P worm named "P2PInfect" is wreaking havoc on Redis instances! 🐛💻 It exploits the critical CVE-2022-0543 vulnerability in the Lua Library with a 10.0 severity score on CVSSv3 scale. Once in, it alters firewalls, granting unrestricted access to operators. 😱

P2PInfect establishes a P2P connection via port 60100 to a large C2 botnet, but no evidence of cryptomining yet. 😮 934 out of 307,000 Redis instances have already fallen victim. 😨

What's scarier? P2PInfect is using Rust, favored by ransomware groups for fast encryption and evading detection. 🦾

🔒 Stay safe! Update your Redis and amp up your cybersecurity practices NOW! 🔒

Source: Unit 42 researchers https://www.hackread.com/self-replicating-p2pinfect-worm-redis-instances/

Key points:
- The worm, known as P2PInfect, is written in Rust and targets the popular open-source database software Redis.
- It exploits a critical vulnerability (CVE-2022-0543) in the Lua Library, which has a severity score of 10.0 on the CVSSv3 scale.
- Once inside a Redis instance, the worm alters local firewall settings, blocking legitimate access and granting unrestricted access to the worm operators.
- The worm establishes a P2P connection via port 60100 to a large command and control (C2) botnet. There's no evidence yet of P2PInfect engaging in cryptomining using infected instances.
- The worm's rapid spread has been noted, with 934 out of 307,000 publicly-communicating Redis instances identified as vulnerable.
- The use of Rust by P2PInfect is concerning as many ransomware groups have shifted to Rust for its benefits, such as faster encryption and evading common detection methods.
- Organizations and individuals are urged to update their Redis instances and implement robust cybersecurity practices to safeguard against potential attacks.

A highly sophisticated peer-to-peer (P2P) worm named "P2PInfect" has been identified by researchers from Unit 42. It targets instances of the popular open-source database software Redis, exploiting a critical vulnerability known as CVE-2022-0543 in the Lua Library. This vulnerability has received a maximum severity score of 10.0 on the CVSSv3 severity scale. Once inside a Redis instance, the worm establishes a foothold in cloud container environments, alters firewall settings, and grants the operators unrestricted access. P2PInfect employs sophisticated techniques for persistence, ensuring long-term presence on infected systems. It establishes a P2P connection to a large command and control botnet, raising concerns about potential future mining activities.

P2PInfect's use of the Rust programming language is unique and concerning to cybersecurity experts, as it offers benefits such as faster encryption and evading common detection methods. The worm's rapid spread has been observed, and organizations are urged to update their Redis instances and implement robust cybersecurity practices. The cybersecurity community must remain vigilant against emerging threats like P2PInfect and other advanced malware strains.

#P2PInfect
#CybersecurityAlert
#Redis
#RustLang
#CVE20220543
#CyberThreat
#Botnet
#CyberAttack
#InfoSec
#Unit42

"🚀 P2PInfect Botnet Skyrockets: A 600X Surge in Traffic Unveiled by Cado Security Labs 🚀"

Cado Security Labs has unveiled a staggering 600X increase in P2PInfect traffic since August 28, with a notable 12.3% spike just a week before the publication of their findings. The botnet, primarily targeting servers hosting publicly-accessible instances of Redis, has seen its tentacles spread across China, the US, Germany, the UK, Singapore, Hong Kong, and Japan. The malware, dubbed P2PInfect, has evolved significantly since its discovery in July 2023, showcasing a self-update mechanism and a rapid release of new variants by its developers. The botnet's exponential growth is alarming, with its nodes now spanning across major Cloud Service Providers (CSPs) in both East-Asian and American regions. The malware's primary objective remains elusive, although its rapid iteration and geographical spread hint at a larger, possibly more nefarious agenda in the offing. The detailed analysis by Cado also sheds light on the botnet's sophisticated evasion and persistence mechanisms, making it a formidable threat to global cybersecurity.

Source: Cado Security Labs

Tags: #P2PInfect #Botnet #CyberSecurity #Malware #CadoSecurityLabs #Redis #CloudSecurity #CyberThreats #InfoSec

"🚀 P2PInfect Botnet Skyrockets: A 600X Surge in Traffic Unveiled by Cado Security Labs 🚀"

Cado Security Labs has unveiled a staggering 600X increase in P2PInfect traffic since August 28, with a notable 12.3% spike just a week before the publication of their findings. The botnet, primarily targeting servers hosting publicly-accessible instances of Redis, has seen its tentacles spread across China, the US, Germany, the UK, Singapore, Hong Kong, and Japan. The malware, dubbed P2PInfect, has evolved significantly since its discovery in July 2023, showcasing a self-update mechanism and a rapid release of new variants by its developers. The botnet's exponential growth is alarming, with its nodes now spanning across major Cloud Service Providers (CSPs) in both East-Asian and American regions. The malware's primary objective remains elusive, although its rapid iteration and geographical spread hint at a larger, possibly more nefarious agenda in the offing. The detailed analysis by Cado also sheds light on the botnet's sophisticated evasion and persistence mechanisms, making it a formidable threat to global cybersecurity.

Source: Cado Security Labs

Tags: #P2PInfect #Botnet #CyberSecurity #Malware #CadoSecurityLabs #Redis #CloudSecurity #CyberThreats #InfoSec