Inbound #Shadowfleet #Tanker #Prometei 9296597 having a bit of a swirly track east of #Bornholm

#NATO vessels nearby

#Russia #BalticSea

UK Construction Firm Hit by Prometei Botnet Hiding in Windows Server Cybersecurity firm eSentire's TRU break down the Prometei botnet attack on a UK firm, detailing its TOR usage, password theft and decoy tactics.

📢⚠️ A construction firm in the UK had its Windows Server hijacked by the #Prometei botnet, mining crypto and stealing passwords after easy RDP access was guessed, hiding under TOR and blocking rivals inside the system 👾

Read: hackread.com/uk-construct...

#CyberSecurity #Malware #CyberAttack #Russia

The Prometei botnet resurfaces with enhanced capabilities, targeting global systems for cryptocurrency mining and credential theft. Stay vigilant and update your defenses. #CyberSecurity #Prometei #Botnet Link: thedailytechfeed.com/prometei-bot...

Prometei Botnet Resurgence

~Paloalto~
A new wave of the Prometei botnet targets Linux systems for cryptomining and credential theft, using updated evasion techniques.
-
IOCs: 103. 41. 204. 104, 152. 36. 128. 18
-
#Botnet #Linux #Prometei #ThreatIntel

May 2025 Detection Highlights: VMRay Threat Identifiers, Config Extractors for Lumma & VideoS...


#detection #updates #CoinLurker #DonutLoader #GremlinStealer #lumma #Prometei #malware #StealC #v2 #VideoSpy
Origin | Interest | Match

Communication with a Prometei C2 — Part Three I am analyzing a Linux Prometei sample of February 2025. In Part One, we found out this sample was packed. In Part Two, we analyzed the…

At last! I finished reversing the communication protocol of Linux/Prometei, with AI's assistance.

A bunch of hallucinations from the AI, but if you struggle on, in the end, you get the info you want.

cryptax.medium.com/communicatio...

#linux #prometei #rc4 #botnet #AI #r2ai #radare2