#strela-stealer

[ follow ]
#oracle-ebs #cve-2025-61882 #wordpress-compromise #detour-dog #starfish-backdoor #dns-based-c2 #mikrotik-botnet
Information security
fromThe Hacker News
3 weeks ago

Weekly Recap: Oracle 0-Day, BitLocker Bypass, VMScape, WhatsApp Worm & More

Cl0p-linked actors actively exploit a critical Oracle E-Business Suite zero-day for large-scale data theft while stealthy groups use compromised WordPress sites to deliver information-stealers.
fromThe Hacker News
3 weeks ago

Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer

The DNS threat intelligence firm said it has been tracking Detour Dog since August 2023, when GoDaddy-owned Sucuri disclosed details of attacks targeting WordPress sites to embed malicious JavaScript that used DNS TXT records as a communication channel for a traffic distribution system (TDS), redirecting site visitors to sketchy sites and malware. Traces of the threat actor date back to February 2020.
Information security
[ Load more ]