Internet Storm Center
Sign In
Sign Up
Handler on Duty:
Johannes Ullrich
Threat Level:
green
Date
Author
Title
CRYPTOCURRENCY MINER
2019-01-10
Brad Duncan
Heartbreaking Emails: "Love You" Malspam
CRYPTOCURRENCY
2022-06-22/a>
Xavier Mertens
Malicious PowerShell Targeting Cryptocurrency Browser Extensions
2022-04-21/a>
Xavier Mertens
Multi-Cryptocurrency Clipboard Swapper
2021-08-30/a>
Xavier Mertens
Cryptocurrency Clipboard Swapper Delivered With Love
2019-01-10/a>
Brad Duncan
Heartbreaking Emails: "Love You" Malspam
2018-10-05/a>
Jim Clausing
A strange spam
2018-01-30/a>
Kevin Liston
Using FLIR in Incident Response?
2018-01-11/a>
Xavier Mertens
Mining or Nothing!
MINER
2025-05-28/a>
Jesse La Grew
[Guest Diary] Exploring a Use Case of Artificial Intelligence Assistance with Understanding an Attack
2025-01-15/a>
Yee Ching Tok
The Curious Case of a 12-Year-Old Netgear Router Vulnerability
2025-01-09/a>
Guy Bruneau
Examining Redtail Analyzing a Sophisticated Cryptomining Malware and its Advanced Tactics [Guest Diary]
2025-01-07/a>
Yee Ching Tok
PacketCrypt Classic Cryptocurrency Miner on PHP Servers
2023-05-30/a>
Johannes Ullrich
Your Business Data and Machine Learning at Risk: Attacks Against Apache NiFi
2023-01-02/a>
Xavier Mertens
NetworkMiner 2.8 Released
2022-04-05/a>
Johannes Ullrich
WebLogic Crypto Miner Malware Disabling Alibaba Cloud Monitoring Tools
2021-12-21/a>
Xavier Mertens
More Undetected PowerShell Dropper
2021-03-19/a>
Xavier Mertens
Pastebin.com Used As a Simple C2 Channel
2020-11-07/a>
Guy Bruneau
Cryptojacking Targeting WebLogic TCP/7001
2020-02-02/a>
Didier Stevens
Video: Stego & Cryptominers
2019-12-26/a>
Xavier Mertens
Bypassing UAC to Install a Cryptominer
2019-04-02/a>
Johannes Ullrich
Fake AV is Back: LaCie Network Drives Used to Spread Malware
2019-01-10/a>
Brad Duncan
Heartbreaking Emails: "Love You" Malspam
2019-01-02/a>
Xavier Mertens
Malicious Script Leaking Data via FTP
2018-11-30/a>
Remco Verhoef
CoinMiners searching for hosts
2018-09-07/a>
Xavier Mertens
Crypto Mining in a Windows Headless Browser
2018-08-30/a>
Xavier Mertens
Crypto Mining Is More Popular Than Ever!
2018-07-13/a>
Xavier Mertens
Cryptominer Delivered Though Compromized JavaScript File
2018-03-05/a>
Xavier Mertens
Malicious Bash Script with Multiple Features
2018-03-04/a>
Xavier Mertens
The Crypto Miners Fight For CPU Cycles
2017-11-13/a>
Guy Bruneau
VBE Embeded Script (info.zip)
2017-09-30/a>
Lorna Hutcheson
Who's Borrowing your Resources?
2017-01-12/a>
Mark Baggett
Some tools updates
2016-11-13/a>
Guy Bruneau
Bitcoin Miner File Upload via FTP
2014-07-07/a>
Johannes Ullrich
Multi Platform *Coin Miner Attacking Routers on Port 32764
2014-04-01/a>
Johannes Ullrich
cmd.so Synology Scanner Also Found on Routers
2013-12-16/a>
Tom Webb
The case of Minerd
2009-11-25/a>
Jim Clausing
Tool updates
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Learn
about the Internet Storm Center
and our
volunteer InfoSec handlers
