Bulletproof hosting provider Proton66 steps-up malware campaigns
a year ago
- #ransomware
- #cybersecurity
- #malware
- Proton66, a Russian bulletproof hosting provider, increased malware campaigns targeting WordPress sites and Android devices starting Jan. 8.
- TrustWave’s SpiderLabs observed Proton66's activities, including mass scanning, credential brute forcing, and exploitation attempts.
- Security experts emphasize the need to disable bulletproof hosting services due to their association with cybercriminal activities.
- Proton66's campaigns include ransomware exploits, WordPress vulnerabilities, and an XWorm campaign targeting Korean-speaking chat rooms.
- Experts recommend layered cybersecurity defenses, regular software updates, and immediate patching of vulnerabilities to mitigate risks.
- Brute force attacks highlight the importance of monitoring login attempts and using CAPTCHA tools to increase attacker costs.