eSentire’s Threat Response Unit (TRU) spotted Prometei, a Russian-linked botnet active since 2016, hitting a construction firm’s Windows Server. This modular malware grabs remote control, steals credentials, mines Monero crypto, spreads laterally, and locks out rivals with self-defense tricks. It phones home via ClearWeb and TOR for commands. Attackers likely slipped in via weak Remote […] The post Prometei Botnet Targets Windows Servers to Gain Remote Access and Deploy Malware appeared first on Cyber Security News.