Mastodawn

Jan 18, 2024

"⚠️ Alert: Androxgh0st Botnet Targets AWS & Microsoft Credentials! 🚨"

The cybersecurity realm is on high alert with the emergence of Androxgh0st, a botnet malware exploiting vulnerabilities to steal AWS and Microsoft credentials. It's a Python-scripted threat, targeting sensitive .env files and leveraging SMTP for credential scanning and web shell deployment. Key vulnerabilities exploited include CVE-2017-9841, CVE-2018-15133, and CVE-2021-41773, allowing remote code execution and file uploads. This critical development warrants immediate attention and proactive defense strategies.

Tags: #CyberSecurity #Botnet #Androxgh0st #Vulnerability #AWS #Microsoft #SMTP #PHP #CVE20179841 #CVE201815133 #CVE202141773 #RemoteCodeExecution #CyberAttack

Sources:

"Androxgh0st Botnet Malware Steals AWS, Microsoft Credentials" by Tushar Subhra Dutta on GBHackers. https://gbhackers.com/androxgh0st-botnet-malware/
"US Gov Issues Warning for Androxgh0st Malware Attacks" by Ionut Arghire on SecurityWeek. https://www.securityweek.com/us-gov-issues-warning-for-androxgh0st-malware-attacks/

Mitre - CVE-2017-9841
Mitre - CVE-2018-15133
Mitre - CVE-2021-41773

Hackers Deploying Androxgh0st Botnet Malware that Steals AWS, Microsoft Credentials

FBI and CISA recently discovered that hackers are actively deploying Androxgh0st botnet malware that steals AWS, and Microsoft credentials.

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform