Dell Product Security Update Advisory (CVE-2025-43914)
Overview We have released security updates to fix vulnerabilities in Dell products. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-43914 DD OS Version: 7.7.1.0 or later and 8.3.0.15 or earlierDD OS version: 8.3.1.0DD OS version: 7.13.1.0 or later and
Ransom & Dark Web Issues Week 3, August 2025
ASEC Blog publishes Ransom & Dark Web Issues Week 3, August 2025 WARLOCK launched a ransomware attack targeting a telecommunications provider in France. The pro-Israeli hacktivist group “313 Team” claims to have conducted DDoS attacks against nine institutions in Saudi Arabia. Qilin carried out
Attacks Targeting Linux SSH Servers to Install SVF DDoS Bot
AhnLab SEcurity intelligence Center (ASEC) is monitoring attacks targeting poorly managed Linux servers by utilizing multiple honeypots. One of the most common honeypots is the SSH service using weak credentials, and a large number of DDoS and CoinMiner threat actors are attacking this service. ASEC has recently identified a case
Ransom & Dark Web Issues Week 3, May 2025
ASEC Blog publishes Ransom & Dark Web Issues Week 3, May 2025 Pro-Russian hacktivist group Killnet announces resumption of activities. Ransomware group HellCat shuts down operations. Hacktivist group Team 1722 claims responsibility for website hacks and data leaks targeting several South Korean
Ransom & Dark Web Issues Week 2, May 2025
ASEC Blog publishes Ransom & Dark Web Issues Week 2, May 2025 Employee data of a large American food franchise company being sold on the XSS forum. DDoS attacks by hacktivist groups due to heightened tensions between India and Pakistan. Analysis of the database
Ransom & Dark Web Issues Week 3, March 2025
ASEC Blog publishes Ransom & Dark Web Issues Week 3, March 2025 New RaaS platform VanHelsing Locker being promoted on dark web forums Pro-Palestinian hacktivist group RipperSec claims to have hacked SCADA systems of Korea Electric Power Technology and Dairy Promotion Board, among others Hacktivist
Ransom & Dark Web Issues Week 2, March 2025
ASEC Blog publishes Ransom & Dark Web Issues Week 2, March 2025 New ransomware group SecP0 demands ransom for corporate vulnerabilities. Pro-Palestinian hacktivist group RipperSec claims DDoS attacks on South Korean telecom companies, public institutions, and education-related websites. Pro-Palestinian hacktivist group Dark Storm Team claims
Ransom & Dark Web Issues Week 4, January 2025
ASEC Blog publishes Ransom & Dark Web Issues Week 4, January 2025 Data from OOO OOO Enterprise, a US IT infrastructure solutions developer, is being sold on BreachForums. Funksec ransomware has targeted a new victim, South Korean networking equipment manufacturer OOO. OOO, a Japanese theme
cShell DDoS Bot Attack Case Targeting Linux SSH Server (screen and hping3)
AhnLab SEcurity intelligence Center (ASEC) monitors attacks against poorly managed Linux servers using multiple honeypots. Among the prominent honeypots are SSH services using weak credential information, which are targeted by numerous DDoS and CoinMiner threat actors. ASEC recently identified a new DDoS malware strain targeting Linux servers while monitoring numerous
Report on DDoSia Malware Launching DDoS Attacks Against Korean Institutions
The Russian hacktivist group NoName057 (16) has been active since March 2022, and their goal is to launch DDoS attacks against targets with anti-Russian views. In November 2024, NoName05, along with the pro-Russian hacktivist groups Cyber Army of Russia Reborn and Alixsec, launched DDoS attacks against the websites of major
