We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

NewApp Digest
search bot

Jupyter Notebooks

Panamorfi Campaign Leverages Minecraft DDoS Package Deployed Via Jupyter Notebook and Discord
AppWizard
August 5, 2024

Panamorfi Campaign Leverages Minecraft DDoS Package Deployed Via Jupyter Notebook and Discord

A new cyber threat campaign called "Panamorfi," orchestrated by the actor yawixooo, targets misconfigured publicly accessible Jupyter notebooks. The attackers use a Minecraft server DDoS tool distributed via Discord to overwhelm servers. The attack begins with yawixooo accessing exposed Jupyter notebooks and executing a command to download a zip file containing two Jar files: conn.jar and mineping.jar. The conn.jar file is crucial for executing the attack, utilizing Discord to manage the DDoS operation and loading mineping.jar, which is designed for TCP flood attacks. Researchers disrupted the attack by preventing the execution of conn.jar and recommend securing Jupyter notebooks, blocking specific file executions, limiting code execution capabilities, and applying security updates. Security professionals warn against sharing sensitive information in Jupyter notebooks.
Hackers Exploit Misconfigured Jupyter Notebooks with Repurposed Minecraft DDoS Tool
AppWizard
August 3, 2024

Hackers Exploit Misconfigured Jupyter Notebooks with Repurposed Minecraft DDoS Tool

Cybersecurity researchers have identified a new wave of DDoS attacks targeting misconfigured Jupyter Notebooks, named Panamorfi. The attacks utilize a Java-based tool called mineping, originally designed for Minecraft servers, to execute TCP flood DDoS attacks. Attackers exploit exposed Jupyter Notebook instances by downloading a ZIP file containing two JAR files: conn.jar, which connects to a Discord channel, and mineping.jar, which executes the mineping package. The objective is to overwhelm the target server with TCP connection requests while providing real-time feedback to the attackers via Discord. The campaign is linked to a threat actor named yawixooo, who has a public GitHub repository related to Minecraft. This is not the first exploitation of Jupyter Notebooks; a Tunisian group, Qubitstrike, previously breached them in October 2023 for cryptocurrency mining and cloud infiltration.
Search