Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2020-05-11 15:28:15 |
Texas Courts hit by ransomware, network disabled to limit spread (lien direct) |
The Texas court system was hit by ransomware on Friday night, May 8th, which led to the branch network including websites and servers being disabled to block the malware from spreading to other systems. [...] |
Ransomware
Malware
|
|
|
|
2020-05-09 12:39:40 |
North Korean hackers infect real 2FA app to compromise Macs (lien direct) |
Hackers have hidden malware in a legitimate two-factor authentication (2FA) app for macOS to distribute Dacls, a remote access trojan associated with the North Korean Lazarus group. [...] |
Malware
Medical
|
APT 38
|
|
|
2020-05-05 16:38:07 |
Cyber volunteers release blocklists for 26,000 COVID-19 threats (lien direct) |
The COVID-19 Cyber Threat Coalition has released a block list of known URLs and domain names associated with Coronavirus-themed scams, phishing attacks, and malware threats. [...] |
Malware
Threat
|
|
|
|
2020-05-01 15:50:00 |
Hackers breach company\'s MDM server to spread Android malware (lien direct) |
Attackers infected more than 75% of a multinational conglomerate's managed Android devices with the Cerberus banking trojan using the company's compromised Mobile Device Manager (MDM) server. [...] |
Malware
|
|
|
|
2020-05-01 13:00:25 |
New phishing campaign packs an info-stealer, ransomware punch (lien direct) |
A new phishing campaign is distributing a double-punch of a LokiBot information-stealing malware along with a second payload in the form of the Jigsaw Ransomware. [...] |
Ransomware
Malware
|
|
|
|
2020-04-30 14:21:09 |
New Android malware steals financial information, bypasses 2FA (lien direct) |
A new banking Trojan can steal financial information from Android users across the United States and several European countries, including the UK, Germany, Italy, Spain, Switzerland, and France. [...] |
Malware
|
|
|
|
2020-04-28 17:00:30 |
Microsoft warns of malware surprise pushed via pirated movies (lien direct) |
Microsoft warns that malicious actors are taking advantage of the boost in traffic seen by movie piracy sites to infect victims with malware delivered via fake movie torrents. [...] |
Malware
|
|
|
|
2020-04-28 07:24:28 |
Lucy malware for Android adds file-encryption for ransomware ops (lien direct) |
A threat actor focusing on Android systems has expanded their malware-as-a-service (MaaS) business with file-encrypting capabilities for ransomware operations. [...] |
Ransomware
Malware
Threat
|
|
|
|
2020-04-27 11:07:06 |
Asnarök malware exploits firewall zero-day to steal credentials (lien direct) |
Some Sophos firewall products were attacked with a new Trojan malware, dubbed Asnarök by researchers cyber-security firm Sophos, to steal usernames and hashed passwords starting with April 22 according to an official timeline. [...] |
Malware
|
|
|
|
2020-04-24 15:18:37 |
Researchers: 30,000% increase in pandemic-related threats (lien direct) |
An increase of 30,000% in pandemic-related malicious attacks and malware was seen in March by security researchers at cloud security firm Zscaler when compared to the beginning of 2020 when the first threats started using COVID-19-related lures and themes. [...] |
Malware
|
|
|
|
2020-04-24 13:14:33 |
BazarBackdoor: TrickBot gang\'s new stealthy network-hacking malware (lien direct) |
A new phishing campaign is delivering a new stealthy backdoor from the developers of TrickBot that is used to compromise and gain full access to corporate networks. [...] |
Malware
|
|
|
|
2020-04-24 12:48:04 |
US universities targeted with malware used by state-backed actors (lien direct) |
Faculty and students at several U.S. colleges and universities were targeted in phishing attacks with a remote access Trojan (RAT) previously used by Chinese state-sponsored threat actors. [...] |
Malware
Threat
|
|
|
|
2020-04-22 18:00:01 |
Customer complaint phishing pushes network hacking malware (lien direct) |
A new phishing campaign is underway that targets a company's employees with fake customer complaints that install a new backdoor used to compromise a network. [...] |
Malware
|
|
|
|
2020-04-21 08:30:00 |
New Coronavirus screenlocker malware is extremely annoying (lien direct) |
A fake WiFi hacking program is being used to distribute a new Coronavirus-themed malware that tries to lock you out of Windows while making some very annoying sounds. [...] |
Malware
|
|
★★★
|
|
2020-04-21 04:00:00 |
Spearphishing campaigns target oil, gas companies with spyware (lien direct) |
Cybercriminals are targeting the oil and gas industry sector with highly targeted spearphishing campaigns impersonating shipment companies and engineering contractors while attempting to infect their targets with Agent Tesla info-stealer malware payloads. [...] |
Malware
|
|
|
|
2020-04-17 16:31:26 |
Microsoft: Trickbot in hundreds of unique COVID-19 lures per week (lien direct) |
TrickBot is, at the moment, the malware showing up in the highest number of unique COVID-19 related malicious emails and attachments delivered to potential victims' inboxes based on Microsoft's Office 365 Advanced Threat Protection (ATP) data. [...] |
Malware
Threat
|
|
|
|
2020-04-16 15:00:00 |
Gmail blocked 18M COVID-19-themed phishing emails in a week (lien direct) |
Google says that the malware scanners built within the Gmail free email service blocked around 18 million phishing and malware emails using COVID-19 lures within the last week. [...] |
Malware
|
|
|
|
2020-04-13 12:18:38 |
Credit card thieves target WooCommerce sites with new skimmer (lien direct) |
Credit card thieves are targeting WordPress e-commerce sites using the WooCommerce plugin using a dedicated JavaScript-based card-skimmer malware instead of run-of-the-mill attempts to redirect payments to attacker-controlled accounts. [...] |
Malware
|
|
|
|
2020-04-12 11:15:37 |
New Wiper Malware impersonates security researchers as prank (lien direct) |
A malware distributor has decided to play a nasty prank by locking victim's computers before they can start Windows and then blaming the infection on two well-known and respected security researchers. [...] |
Malware
|
|
|
|
2020-04-09 06:00:00 |
Phishing emails impersonate the White House and VP Mike Pence (lien direct) |
Phishing scammers have started to impersonate President Trump and Vice President Mike Pence in emails that distribute malware or perform extortion scams. [...] |
Malware
|
|
|
|
2020-04-08 17:33:25 |
New IoT botnet launches stealthy DDoS attacks, spreads malware (lien direct) |
A new botnet is actively targeting IoT devices using payloads compiled for a dozen CPU architectures and uses them to launch several types of DDoS and to spread various types of malware. [...] |
Malware
|
|
★★
|
|
2020-04-06 12:16:37 |
PSA: Fake Zoom installers being used to distribute malware (lien direct) |
Attackers are taking advantage of the increased popularity of the Zoom video conferencing service to distribute installers that are bundled with malware and adware applications. [...] |
Malware
|
|
|
|
2020-04-03 18:07:26 |
Discord Turned Into an Account Stealer by Updated Malware (lien direct) |
A new version of the popular AnarchyGrabber Discord malware has been released that modifies the Discord client files so that it can evade detection and steal user accounts every time someone logs into the chat service. [...] |
Malware
|
|
|
|
2020-04-02 16:46:01 |
New Coronavirus-Themed Malware Locks You Out of Windows (lien direct) |
With school closed due to the Coronavirus pandemic, some kids are creating malware to keep themselves occupied. Such is the case with a variety of new MBRLocker variants being released, including one with a Coronavirus theme. [...] |
Malware
|
|
|
|
2020-03-30 16:53:16 |
Banking Malware Spreading via COVID-19 Relief Payment Phishing (lien direct) |
The Zeus Sphinx banking Trojan has recently resurfaced after a three years hiatus as part of a coronavirus-themed phishing campaign, the most common theme behind most attacks by far during the current pandemic. [...] |
Malware
|
|
|
|
2020-03-30 12:49:03 |
Hackers Take Advantage of Zoom\'s Popularity to Push Malware (lien direct) |
Attackers are attempting to take advantage of Zoom's increasing user base since the COVID-19 outbreak started by registering hundreds of new Zoom-themed domains for malicious purposes. [...] |
Malware
|
|
|
|
2020-03-29 12:12:28 |
Phishing Attack Says You\'re Exposed to Coronavirus, Spreads Malware (lien direct) |
A new phishing campaign has been spotted that pretends to be from a local hospital telling the recipient that they have been exposed to the Coronavirus and that they need to be tested. [...] |
Malware
|
|
|
|
2020-03-27 05:42:49 |
Russian-Speaking Hackers Attack Pharma, Manufacturing Companies in Europe (lien direct) |
Malware belonging to Russian-speaking threat actors was used in attacks in late January against at least two European companies in the pharmaceutical and manufacturing industries. [...] |
Malware
Threat
|
|
|
|
2020-03-25 17:28:55 |
WordPress Malware Distributed via Pirated Coronavirus Plugins (lien direct) |
The threat actors behind the WordPress WP-VCD malware have started to distribute modified versions of Coronavirus plugins that inject a backdoor into a web site. [...] |
Malware
Threat
|
|
|
|
2020-03-25 13:08:29 |
Malware Disguised as Google Updates Pushed via Hacked News Sites (lien direct) |
Hacked corporate sites and news blogs running using the WordPress CMS are being used by attackers to deliver backdoor malware that allows them to drop several second-stage payloads such as keyloggers, info stealers, and Trojans. [...] |
Malware
|
|
|
|
2020-03-24 09:52:31 |
Unknown Hackers Use New Milum RAT in WildPressure Campaign (lien direct) |
A new piece of malware that shows no similarities with samples used in known campaigns is currently used to attack computers in various organizations. Researchers named the threat Milum and dubbed the operation WildPressure. [...] |
Malware
Threat
|
|
|
|
2020-03-23 19:12:32 |
Fake Corona Antivirus Software Used to Install Backdoor Malware (lien direct) |
Sites promoting a bogus Corona Antivirus are taking advantage of the current COVID-19 pandemic to promote and distribute a malicious payload that will infect the target's computer with the BlackNET RAT and add it to a botnet. [...] |
Malware
|
|
|
|
2020-03-23 13:33:26 |
HHS.gov Open Redirect Used by Coronavirus Phishing to Spread Malware (lien direct) |
An HHS.gov open redirect is currently being used by attackers to push malware payloads with the help of coronavirus-themed phishing emails onto unsuspecting victims' systems. [...] |
Malware
|
|
|
|
2020-03-19 18:10:00 |
WHO Chief Impersonated in Phishing to Deliver HawkEye Malware (lien direct) |
An ongoing phishing campaign delivering emails posing as official messages from the Director-General of the World Health Organization (WHO) is actively spreading HawkEye malware payloads onto the devices of unsuspecting victims. [...] |
Malware
|
|
|
|
2020-03-19 11:25:15 |
RedLine Info-Stealing Malware Spread by Folding@home Phishing (lien direct) |
A new phishing email is trying to take advantage of the Coronavirus pandemic and the race to develop medications by promoting a fake Folding@home app that installs an information-stealing malware. [...] |
Malware
|
|
|
|
2020-03-18 17:06:59 |
Hackers Hide Malware C2 Communication By Faking News Site Traffic (lien direct) |
A cyber-espionage group active since at least 2012 used a legitimate tool to shield their backdoor from analysis attempts to avoid detection. In their effort, the hackers also used a fake host header named after a known news site. [...] |
Malware
Tool
|
|
|
|
2020-03-18 15:14:52 |
Trickbot, Emotet Malware Use Coronavirus News to Evade Detection (lien direct) |
The TrickBot and Emotet Trojans have started to add text from Coronavirus news stories to attempt to bypass security software using artificial intelligence and machine learning to detect malware. [...] |
Malware
|
|
|
|
2020-03-17 15:30:00 |
Windows 10 Secured-Core PCs Can Block Driver-Abusing Malware (lien direct) |
Microsoft says that Windows 10 Secured-core PCs can successfully defend their users against malware designed to take advantage of driver security flaws to disable security solutions. [...] |
Malware
|
|
|
|
2020-03-14 14:30:20 |
BlackWater Malware Abuses Cloudflare Workers for C2 Communication (lien direct) |
A new backdoor malware called BlackWater pretending to be COVID-19 information while abusing Cloudflare Workers as an interface to the malware's command and control (C2) server. [...] |
Malware
|
|
|
|
2020-03-12 08:23:52 |
Advanced Russian Hackers Use New Malware in Watering Hole Operation (lien direct) |
Two previously undocumented pieces of malware, a downloader and a backdoor, were used in a watering hole operation attributed to the Russian-based threat group Turla. [...] |
Malware
Threat
|
|
|
|
2020-03-10 13:29:45 |
Microsoft Takes Control of Necurs U.S.-Based Infrastructure (lien direct) |
Microsoft announced today that it took over the U.S.-based infrastructure used by the Necurs spam botnet for distributing malware payloads and infecting millions of computers. [...] |
Spam
Malware
|
|
|
|
2020-03-10 03:32:00 |
Malware Unfazed by Google Chrome\'s New Password, Cookie Encryption (lien direct) |
Google's addition of the AES-256 algorithm to encrypt cookies and passwords in the Chrome browser had a minor impact on infostealers. [...] |
Malware
|
|
|
|
2020-03-09 18:09:13 |
Google Play Protect Miserably Fails Android Protection Tests (lien direct) |
Google's Play Protect Android mobile threat protection system failed German antivirus testing lab AV-Test real-world tests, scoring zero out of a maximum of six points after very weak malware detection performance. [...] |
Malware
Threat
|
|
|
|
2020-03-09 15:43:06 |
Malware Spread as Nude Extortion Pics of Friend\'s Girlfriend (lien direct) |
Attackers have recently warped sextortion scams into baits used to infect their targets with Raccoon information stealer malware designed to help steal credentials, credit card information, desktop cryptocurrency wallets, and more. [...] |
Malware
|
|
|
|
2020-03-07 15:12:48 |
Data-Stealing FormBook Malware Preys on Coronavirus Fears (lien direct) |
Another email campaign pretending to be Coronavirus (COVID-19) information from the World Health Organization (WHO) is distributing a malware downloader that installs the FormBook information-stealing Trojan. [...] |
Malware
|
|
|
|
2020-03-06 03:30:01 |
TrickBot Malware Targets Italy in Fake WHO Coronavirus Emails (lien direct) |
A new spam campaign is underway that is preying on the fears of Coronavirus (COVID-19) to target people in Italy with the TrickBot information-stealing malware. [...] |
Spam
Malware
|
|
|
|
2020-03-05 11:29:14 |
Attackers Deliver Malware via Fake Website Certificate Errors (lien direct) |
Cybercriminals are distributing malware using fake security certificate update requests displayed on previously compromised websites, attempting to infect potential victims with backdoors and Trojans using a malicious installer. [...] |
Malware
|
|
|
|
2020-03-04 12:09:37 |
Windows Explorer Used by Mailto Ransomware to Evade Detection (lien direct) |
A newly discovered Mailto (NetWalker) ransomware strain can inject malicious code into the Windows Explorer process so that the malware can evade detection. [...] |
Ransomware
Malware
|
|
|
|
2020-03-01 13:51:09 |
New Evasion Encyclopedia Shows How Malware Detects Virtual Machines (lien direct) |
A new Malware Evasion Encyclopedia has been launched that offers insight into the various methods malware uses to detect if it is running under a virtual environment. [...] |
Malware
|
|
|
|
2020-02-29 13:00:24 |
Hiding Windows File Extensions is a Security Risk, Enable Now (lien direct) |
Microsoft hides file extensions in Windows by default even though it's a security risk that is commonly abused by phishing emails and malware distributors to trick people into opening malicious files. [...] |
Malware
|
|
|