Necro Python bot revamped with new VMWare, server exploits

A recent Necro Python bot campaign has shown that the developer behind the malware is hard at work ramping up its capabilities.

On Thursday, researchers from Cisco Talos published a report on Necro Python, a bot that has been in development since 2015. The botnet’s development progress was documented in January 2021 by both Check Point Research (CPR) and Netlab 360, tracked separately as FreakOut and Necro.

A version of the botnet, released on May 18, also includes exploits for EternalBlue (CVE-2017-0144) and EternalRomance (CVE-2017-0147).

Read more…
Source: ZDNet