Phorpiex botnet returns with new tricks making it harder to disrupt

[silversurfer]

Content source

https://www.bleepingcomputer.com/news/security/phorpiex-botnet-returns-with-new-tricks-making-it-harder-to-disrupt/

The previously shutdown Phorpiex botnet has re-emerged with new peer-to-peer command and control infrastructure, making the malware more difficult to disrupt.

When Phorpiex relaunched in September, Check Point saw it distributing a new malware variant called "Twizt" that allows the botnet to operate without centralized command and control servers. Instead, the new Twizt Phorpiex variant added a peer-to-peer command and control system that allows the various infected devices to relay commands to each other if the static command and control servers were offline.

"Simultaneously, the C&C servers started distributing a bot that had never seen before. It was called “Twizt” and enables the botnet to operate successfully without active C&C servers, since it can operate in peer-to-peer mode.," explained the new report by Check Point.
"This means that each of the infected computers can act as a server and send commands to other bots in a chain."

Phorpiex botnet returns with new tricks making it harder to disrupt

The previously shutdown Phorpiex botnet has re-emerged with new peer-to-peer command and control infrastructure, making the malware more difficult to disrupt.

www.bleepingcomputer.com

 

[Gandalf_The_Grey]

Phorpiex botnet returns with new tricks making it harder to disrupt

The previously shutdown Phorpiex botnet has re-emerged with new peer-to-peer command and control infrastructure, making the malware more difficult to disrupt.

www.bleepingcomputer.com

From this article:

To protect yourself against threats like Phorpiex, Check Point offers the following tips:

• When performing cryptocurrency transactions, make sure to double-check that the pasted wallet address is indeed the correct one.
• Performing a small test transaction before sending a large amount is also a reasonable precaution to avoid losing much money.
• Update your operating systems and installed applications to fix vulnerabilities.
• Be sure not to mistakenly click on an ad when searching for cryptocurrency wallets and tools, as these ads commonly lead to scams.

Finally, cryptocurrency transactions cannot be reversed, and retrieving lost amounts can only happen if law enforcement gains access to a threat actor’s wallet.

While law enforcement operations have been able to recover ransom payments in the past, it is seldom the case, so don’t count on it.