šŸ„” potato miner fightback

How I Stumbled Upon the Malware While reviewing new servers listed in the intel.nuffsec.com database, one entry immediately caught my attentionā€”it was the first belarusianšŸ„” server to appear in the database. Curious, I decided to dig deeper. My investigation revealed an open directory on port 12455 containing numerous files that were blatantly malicious. I downloaded all the files, promptly filed an abuse report and notified the Belarusian authorities, hoping for swift action. Days turned into weeks, and despite repeated reports from me and my colleagues, the server remained operational. This persistence led me to a troubling conclusion: either this server operates under the protection of the Belarusian government or its activities are being carried out with their tacit approval. ...

January 11, 2025 Ā· root