Author Archives:irenathreatstop

Recent Posts

Bi-weekly Security Update 2/15/2017

Malicious content identified and inserted:

  • IPs – 1318
  • Domains – 323

Target list content updated:

  • TSCritical
  • TSRansomware
  • TSPhishing
  • TSBanking

Share this:



On November 30th, 2016, a worldwide cooperative takedown of the Avalanche botnet took place after more than four years of investigation.  “Avalanche” refers to a worldwide crimeware-as-a-service (CaaS) network infrastructure operated by cyber criminals conducting malicious activity. This includes: DDoS, malware distribution, phishing and money-mule operations causing hundreds of millions of damages in Euros worldwide.

Share this:

Mirai – Don’t be one of the millions!

On September 20th, the widely read security blog, Krebs On Security, was targeted by a massive DDoS attack that was powered by the Mirai botnet. The same malware was deemed responsible for the Dyn attack on October 21st by Flashpoint.

Share this:

.XYZ taking action

Last week ThreatSTOP published a security analysis report regarding registration of malicious domains used for the Neutrino EK infrastructure.

Share this:

Recalculated Threat Levels for Targets

We on the ThreatSTOP security team have been working diligently to provide our customers with the most up-to-date and accurate threat data to ensure our platform delivers best-in-class protection against today's most insidious threats.

Share this:

Panda Banker - Expanding coverage

The Panda Banker banking Trojan, recently uncovered by Fox IT, is related to one of the most famous and destructive banking Trojans in history, Zeus. The Panda Banker is designed to collect victim's login information and online banking credentials and is currently being used to target banking customers in the United Kingdom and Australia. Like its predecessor, the Panda Banker integrates more advanced persistence, infection strategies and modules, which makes the Panda Banker a considerable threat to its victims.

Share this:

ThreatSTOP Critical Ransomware

Those of you who follow cybersecurity news in general and our blog in particular have likely noticed a rise in the number of ransomware-related events.

Share this:

Recent malicious CDN block

Recently ThreatSTOP blocked information delivered by a couple of high-profile content distribution networks (CDNs)  causing  certain content to be unavailable to our customers via social media platforms.

Share this: