Bitcoin 2022 is the most prominent Bitcoin event in the world, and it will feature a wide range of programs. A total of 35,000 people are expected to attend from all over the world.
The threat actor, a Russian speaker, is taking advantage of Microsoft Exchange vulnerabilities to penetrate random networks. This threat has likely resulted in steep financial and data losses for companies.
Among the DNS activity findings: users in 70 percent of organizations got malicious browser ads. Furthermore, 51 percent of organizations encountered ransomware-related activity. Another 48 percent found information-stealing malware activity.
ESET researchers have been “sinkholing” several domain names that control the botnet’s actions, replacing them with machines that do not send the botnet’s slave computers the commands they expect, but simply monitor botnet activity. Based on this data and ESET telemetry, ESET estimates that at least 35,000 devices became infected with VictoryGate at one point or another during this campaign.