Zyklon Targets Msoft With Backdoor Malware To Steal Data, Launch DDoS Attacks

News broke earlier today that hackers have launched a new spam campaign, targeting the telecommunications, insurance and financial services industries. The campaign involves hackers using new Microsoft Office vulnerabilities to spread a potent backdoor malware called Zyklon, which can steal passwords,  allow hackers to launch DDoS attacks and mine cryptocurrency, among other things.

Sean Newman, Director of Product Management at Corero Network Security:

“There’s no getting away from the levels of sophistication that cyber criminals are now using to underpin their nefarious activities.  This latest report of vulnerabilities in Microsoft Office products being leveraged to install malware, which can be remotely controlled to deliver those attacks, may not be a surprise to many people.

“However, the flexibility and attack scale possible from such an army of compromised devices should be a significant concern. The possibilities for cryptocurrency abuse or the ability to generate large-scale DDoS attacks have significant revenue generating potential for the cyber-criminals, at the expense of those trying to benefit from the broad opportunities the Internet affords.

“Ensuring your software is patched can help to keep you safe from attacks on your data or cryptocurrency, but the only way to ensure you are safe from external DDoS attacks generated by this malware, is to ensure you have the latest real-time protection in place.”

Click to view all articles for the EPIC:
Or click to view the full company profile:
    Facebook
    Twitter
    LinkedIn
    Corero Network Security

    More articles like this

    Corero Network Security

    The NIS Directive – just how tough is it really?

    Over the last few months, UK media outlets have been filled with reports about the series of tough new measures being introduced on 9th May to protect our national critical infrastructure against cyber threats. In January, the government confirmed

    Corero Network Security

    The US Government Vs Botnets

    U.S. government agencies are working hard to solve the problem of botnets and other cyber threats, and are asking for input from various stakeholders. In July 2017 the National Institute of Standards and Technology (NIST) conducted

    Corero Network Security

    Corero Network Security plc Customer Wins

    Corero Network Security plc (LON:CNS), the global network security company, has today announced two orders for its SmartWall® Threat Defense System (“SmartWall”) technology with a combined value of $0.9 million (with additional incremental orders expected in

    Corero Network Security

    Memcached Flaw Kill Switch Could Foil DDoS-ers

    Researchers claim to have discovered a way of mitigating a vulnerability in Memcached servers which is responsible for two of the biggest DDoS attacks ever recorded. Corero Network Security said it has disclosed the new “kill switch”

    Corero Network Security

    Github weathers world’s largest DDoS attack

    Github has weathered the biggest DDoS attack in history with just 10 minutes of downtime, according to new reports. The code-sharing site was subjected to a colossal 1.35Tbits/sec surge in traffic, as unknown hackers attempted to take

    Corero Network Security

    Bursts, Waves and DDoS: What You Need to Know

    A recent Cisco report found that 42 percent of organizations experienced “burst”distributed denial of service (DDoS) attacks in 2017. Burst attacks, otherwise known as Pulse-Wave attacks, are gaining favor among hackers because they enable perpetrators to attack multiple targets, one after

    Corero Network Security

    Enterprise costs of DDoS attacks exceed $2 Million

    New Kaspersky Labs research notes that the financial impact of a Distributed Denial of Service (DDoS) attack continues to rise, and is now more than $120K for SMBs and more than $2M for enterprise organizations. A Corero Network Security executive

    Corero Network Security

    How Smart CISO’s Protect their Business from DDoS

    When Businesses Suffer as a Result of DDoS Attacks It’s hardly a surprise that DDoS attacks are so common. What is surprising is that so many companies still lack adequate DDoS protection. Our own survey of

    Corero Network Security

    Cybersecurity at CES: ADT targets home users

    Once relegated to simple subscription firewall and internet security software, today’s smart homes have come a long way when it comes to cybersecurity. Thanks to the rapid rise of smart home-related IoT products – and the

    Corero Network Security

    Autosploit: A Marriage Made for DDoS Botnets

    On January 30, 2018 a new mass exploitation tool called “Autosploit” was released on Github, a Git repository hosting service. Autosploit leverages Python code to automatically search for vulnerable devices connected to the Internet and then

    Corero Network Security

    Is Your DDoS Protection Strategy Hitting the Mark?

    Find out how effective you are at protecting your network from DDoS. Take this short assessment and get personalised results plus a free eBook.   Corero Network Security is the leader in real-time, high-performance DDoS defense

    Corero Network Security

    Business Wire under sustained DDoS attack, traffic slowed

    A persistent distributed denial of service (DDoS) attack over the past week has prompted a slowdown on the Business Wire website, but seemingly hasn’t exposed client data, company Chief Operating Officer (COO) Richard DeLeo told customers

    Corero Network Security

    What can be expected from DDoS attacks in 2018?

    2017 will be remembered as the year of massive data breaches, state-sponsored attacks, numerous ransomware threats and more phishing scams them we can count. But it also marked a turning point for the DDoS landscape. Corero

    Corero Network Security

    The Rise of IoT Botnet Threats and DDoS attacks

    Earlier this month, a report by Neustar International Security Council (NISC) revealed that many businesses viewed unsecured IoT devices as their biggest concern about the state of their organisation’s security. While ransomware and financial data theft were still