Skip to main content

Massive Criminal Server Exposed

Massive Criminal Server Exposed

At the Black Hat conference last week, Joe Stewart of security firm SecureWorks reported on shutting down the main server for Coreflood, a criminal network that grew from a Trojan to become a massive repository of stolen data.

Coreflood was really noticed in 2004, when hackers infected a company with a Trojan and stole money from a US company. After that, however, it appeared to go underground. But earlier this year SecureWorks and Spamhaus shut down one of its servers and discovered 50 GB of stolen data – although SecureWorks says more than four times this amount had been previously harvested and discarded. The data included 3,233 credit card usernames and passwords, 8,485 bank and credit union usernames and passwords – all in all, a total of just under half a million usernames and passwords to over 35,000 domains.

Recommended Videos

How did they do it? By being slow and careful. After infecting one machine in a network they’d continue through the network until reaching a computer with administrative access, then use that to ensure infection of the entire network.

The good news is that the server was shut down. The bad news? The botnet it created remains active – everything has simply moved to Russia, and there may be more activity coming according to Stewart, who noted that one directory, created “a couple of weeks before we took the server offline, contained a Microsoft PowerPoint exploit, indicating the Coreflood group may have been interested in pursuing targeted attacks similar to those used by Chinese and Romanian hacking groups in recent months.”

Digital Trends Staff
Digital Trends has a simple mission: to help readers easily understand how tech affects the way they live. We are your…
Nearly 32 million personal files with sensitive data have been exposed
A large monitor displaying a security hacking breach warning.

Your full name, address, and partial credit card numbers may have been exposed in a data breach involving field service management business ServiceBridge. Security researcher Jeremiah Fowler's report uncovers that nearly 32 million non-password-protected files, such as contracts, invoices, agreements, and more, were exposed.

The information was publicly accessible, with no security authorization needed, for an undisclosed amount of time, and there is no official confirmation of who may have accessed it. The files date back to 2012 and are linked to companies from Canada, numerous European countries, the U.S., and the U.K.

Read more
Staples is selling student laptops with massive discounts this week
The HP 15.6-inch fd0025st Windows 11 Laptop.

There’s only a few more weeks until official matriculation starts for many college students. This means there’s no better time to start grabbing back-to-school sales than now. We’ve been scouring our go-to retailers for student laptop deals, and Staples is offering major markdowns on two great Windows PCs:

One of these is the HP 15.6-inch FHD Laptop, which is discounted to $300. At full price, this model goes for $660. The other is the HP Pavilion 16-inch FHD Laptop, which is marked down to $440 from $770.
HP 15.6-inch FHD Laptop — $300, was $660

Read more
HP is having a massive gaming PC sale this weekend
HP Omen 40L Gaming PC on a table connected to a monitor.

Gamers assemble: If you’ve been waiting to make a huge upgrade to your gaming rig, or you’re looking for a powerful PC that can play Diablo IV at max settings, allow us to draw your attention to this amazing sale that HP is having! 

We’re always on the lookout for gaming PC deals, and this is one of the best promotions we’ve seen in a minute. While this sale lasts, you’ll be able to purchase the HP Omen 45L, HP Omen 40L, and HP Victus 15L, all at discounted prices. 

Read more