Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-03-18 14:47:20 |
Beware Android trojan posing as Clubhouse app (lien direct) |
The malware can grab login credentials for more than 450 apps and bypass SMS-based two-factor authentication
|
Malware
|
|
|
|
2021-02-02 10:30:02 |
Kobalos – A complex Linux threat to high performance computing infrastructure (lien direct) |
ESET researchers publish a white paper about unique multiplatform malware they've named Kobalos
|
Threat
Malware
|
|
|
|
2021-01-26 16:26:10 |
Wormable Android malware spreads via WhatsApp messages (lien direct) |
“Download This application and Win Mobile Phone”, reads the message attempting to trick users into downloading a fake Huawei app
|
Malware
|
|
|
|
2021-01-12 10:30:16 |
Operation Spalax: Targeted malware attacks in Colombia (lien direct) |
ESET researchers uncover attacks targeting Colombian government institutions and private companies, especially from the energy and metallurgical industries
|
Malware
|
|
|
|
2020-12-23 10:30:48 |
7 ways malware can get into your device (lien direct) |
You know that malware is bad, but are you also aware of the various common ways in which it can infiltrate your devices?
|
Malware
|
|
|
|
2020-10-29 17:25:49 |
Over 100,000 machines remain vulnerable to SMBGhost exploitation (lien direct) |
The patch for the critical flaw that allows malware to spread across machines without any user interaction was released months ago
|
Malware
|
|
|
|
2020-09-21 15:37:48 |
Mozilla fixes flaw that let attackers hijack Firefox for Android via Wi‑Fi (lien direct) |
Attackers could have exploited the flaw to steal victims' login credentials or install malware on their devices
|
Malware
|
|
|
|
2020-09-10 09:30:41 |
Who is calling? CDRThief targets Linux VoIP softswitches (lien direct) |
ESET researchers have discovered and analyzed malware that targets Voice over IP (VoIP) softswitches.
|
Malware
|
|
|
|
2020-07-16 09:30:50 |
Mac cryptocurrency trading application rebranded, bundled with malware (lien direct) |
ESET researchers lure GMERA malware operators to remotely control their Mac honeypots
|
Malware
|
|
|
|
2020-07-15 09:30:34 |
Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko (lien direct) |
ESET malware researcher Lukas Stefanko gives us a peek behind the scenes of his analysis of CryCryptor ransomware and puts the threat into a broader context
|
Threat
Ransomware
Malware
|
|
|
|
2020-05-22 13:00:42 |
Insidious Android malware gives up all malicious features but one to gain stealth (lien direct) |
ESET researchers detect a new way of misusing Accessibility Service, the Achilles' heel of Android security
|
Malware
|
|
|
|
2020-05-13 09:30:23 |
Ramsay: A cyber‑espionage toolkit tailored for air‑gapped networks (lien direct) |
ESET researchers uncover several instances of malware that uses various attack vectors to target systems isolated by an air gap
|
Malware
|
|
|
|
2020-02-21 10:30:38 |
Up close and personal with Linux malware (lien direct) |
What are the main security threats facing Linux? A Q&A with ESET Senior Malware Researcher Marc‑Etienne M.Léveillé, whose work has been instrumental in uncovering a number of malware strains hitting Linux servers.
|
Malware
|
|
|
|
2020-02-20 10:30:26 |
Linux and malware: Should you worry? (lien direct) |
Malicious code is nothing to worry about on Linux, right? Hold your penguins. How Linux malware has gone from the sidelines to the headlines.
|
Malware
|
|
|
|
2020-02-13 15:00:38 |
Almost 2 billion malware installs thwarted by Google Play Protect in 2019 (lien direct) |
That's for apps from third-party marketplaces; another 790,000 policy-breaking apps were stopped from reaching Google Play
|
Malware
|
|
|
|
2019-10-17 09:30:46 |
Operation Ghost: The Dukes aren\'t back – they never left (lien direct) |
ESET researchers describe recent activity of the infamous espionage group, the Dukes, including three new malware families
|
Malware
|
APT 29
|
|
|
2019-10-14 09:30:05 |
Connecting the dots: Exposing the arsenal and methods of the Winnti Group (lien direct) |
New ESET white paper released describing updates to the malware arsenal and campaigns of this group known for its supply-chain attacks
|
Malware
|
|
|
|
2019-09-09 09:30:03 |
ESET discovered an undocumented backdoor used by the infamous Stealth Falcon group (lien direct) |
>ESET researchers discovered a backdoor linked to malware used by the Stealth Falcon group, an operator of targeted spyware attacks against journalists, activists and dissidents in the Middle East
|
Malware
|
|
|
|
2019-07-18 09:30:01 |
Okrum: Ke3chang group targets diplomatic missions (lien direct) |
>Tracking the malicious activities of the elusive Ke3chang APT group, ESET researchers have discovered new versions of malware families linked to the group, and a previously unreported backdoor
|
Malware
|
APT 15
APT 25
|
|
|
2019-06-17 09:30:04 |
Malware sidesteps Google permissions policy with new 2FA bypass technique (lien direct) |
>ESET analysis uncovers a novel technique bypassing SMS-based two-factor authentication while circumventing Google's recent SMS permissions restrictions
|
Malware
|
|
|
|
2019-05-29 09:30:02 |
A dive into Turla PowerShell usage (lien direct) |
>ESET researchers analyze new TTPs attributed to the Turla group that leverage PowerShell to run malware in-memory only
|
Malware
|
|
|
|
2019-05-14 09:30:05 |
Plead malware distributed via MitM attacks at router level, misusing ASUS WebStorage (lien direct) |
>ESET researchers have discovered that the attackers have been distributing the Plead malware via compromised routers and man-in-the-middle attacks against the legitimate ASUS WebStorage software
|
Malware
Guideline
|
|
|
|
2019-05-07 12:00:02 |
Turla LightNeuron: An email too far (lien direct) |
>ESET research uncovers Microsoft Exchange malware remotely controlled via steganographic PDF and JPG email attachments
|
Malware
|
|
|
|
2019-04-23 20:46:04 |
WannaCryptor \'accidental hero\' pleads guilty to malware charges (lien direct) |
>Marcus Hutchins, who is best known for his inadvertent role in blunting the WannaCryptor outbreak two years ago, may now face a stretch behind bars
|
Malware
|
Wannacry
|
|
|
2019-04-09 09:30:05 |
OceanLotus: macOS malware update (lien direct) |
>Latest ESET research describes the inner workings of a recently found addition to OceanLotus's toolset for targeting Mac users
|
Malware
|
APT 32
|
|
|
2019-03-11 10:27:01 |
Gaming industry still in the scope of attackers in Asia (lien direct) |
>Asian game developers again targeted in supply-chain attacks distributing malware in legitimately signed software
|
Malware
|
|
|
|
2019-02-15 10:28:01 |
Navigating the murky waters of Android banking malware (lien direct) |
>An interview with ESET malware researcher Lukáš Štefanko about Android banking malware, the topic of his latest white paper
|
Malware
|
|
|
|
2019-02-08 10:58:03 |
First clipper malware discovered on Google Play (lien direct) |
>Cryptocurrency stealers that replace a wallet address in the clipboard are no longer limited to Windows or shady Android app stores
|
Malware
|
|
|
|
2019-01-18 13:39:05 |
Two men charged with hacking into SEC in stock-trading scheme (lien direct) |
>The hacking duo is believed to have exploited a software flaw and compromised several SEC workstations with malware in order to take early peeks at financial disclosures
|
Malware
|
|
|
|
2018-12-31 14:58:01 |
Ransomware vs. printing press? US newspapers face “foreign cyberattack” (lien direct) |
Did malware disrupt newspaper deliveries in major US cities? Here's what's known about the incident so far and the leading suspect: Ryuk ransomware. Plus, advice on defending your organization against such attacks.
|
Ransomware
Malware
Guideline
|
|
|
|
2018-12-31 11:58:00 |
2018: Research highlights from ESET\'s leading lights (lien direct) |
>As the curtain slowly falls on yet another eventful year in cybersecurity, let's look back on some of the finest malware analysis by ESET researchers in 2018
|
Malware
|
|
|
|
2018-12-14 00:57:02 |
Malaysian government targeted with mash-up espionage toolkit (lien direct) |
>An interview with ESET researchers Tomáš Gardoň and Filip Kafka on their research of a malware toolkit used in espionage against the Malaysian government
|
Malware
|
|
|
|
2018-12-05 13:57:04 |
The Dark Side of the ForSSHe (lien direct) |
>ESET researchers discovered a set of previously undocumented Linux malware families based on OpenSSH. In the white paper, “The Dark Side of the ForSSHe”, they release analysis of 21 malware families to improve the prevention, detection and remediation of such threats
|
Malware
|
|
|
|
2018-11-12 14:02:04 |
Malware of the 90s: Remembering the Michelangelo and Melissa viruses (lien direct) |
A look back at two of the most damaging malicious codes of the 1990s
|
Malware
|
|
|
|
2018-11-12 12:57:03 |
Google\'s data charts path to avoiding malware on Android (lien direct) |
>How much higher are the odds that your device will be exposed to malware if you download apps from outside Google Play or if you use one of Android's older versions? Google has the numbers
|
Malware
|
|
|
|
2018-11-05 15:07:02 |
Malware of the 1980s: Looking back at the Brain Virus and the Morris Worm (lien direct) |
>This instalment in our series of articles to mark Antimalware Day tells the stories behind two creations that are representative of the 1980s: a virus viewed as the first-ever PC virus and a worm that caused the greatest damage ever wrought by a piece of malware up to that point
|
Malware
|
|
|
|
2018-10-25 08:57:05 |
ESET releases new decryptor for Syrian victims of GandCrab ransomware (lien direct) |
>ESET experts have created a new decryption tool that can be used by Syrian victims of the GandCrab ransomware. It is based on a set of keys recently released by the malware operators
|
Ransomware
Malware
Tool
|
|
|
|
2018-10-24 10:03:00 |
LuminosityLink RAT author sentenced to 2.5 years in jail (lien direct) |
>As part of his plea agreement, the author of the malware also forfeited the proceeds from his crimes – 114 Bitcoin worth $725,000
|
Malware
|
|
|
|
2018-09-27 09:57:03 |
LoJax: First UEFI rootkit found in the wild, courtesy of the Sednit group (lien direct) |
>ESET researchers have shown that the Sednit operators used different components of the LoJax malware to target a few government organizations in the Balkans as well as in Central and Eastern Europe
|
Malware
|
APT 28
|
|
|
2018-09-05 12:57:01 |
PowerPool malware exploits ALPC LPE zero-day vulnerability (lien direct) |
>Malware from newly uncovered group PowerPool exploits zero-day vulnerability in the wild, only two days after its disclosure
|
Malware
Vulnerability
|
|
|
|
2018-08-29 11:56:05 |
Semi-annual balance of mobile security (lien direct) |
>For Android, malware detections were down 27.48% compared to the first half of 2017; for iOS, they decreased 15% compared to the same period last year
|
Malware
|
|
|
|
2018-08-28 11:59:02 |
Lukáš Štefanko: I hope other app developers don\'t follow Epic\'s example (lien direct) |
>After Epic Games shunned Google Play, debates about threats faced by Android users have taken on a whole new tenor. Joining us to add his voice to the mix is ESET Malware Researcher Lukáš Štefanko
|
Malware
|
|
|
|
2018-08-07 13:20:01 |
Apple chip supplier blames WannaCryptor variant for plant shutdowns (lien direct) |
The malware outbreak has even prompted concerns of delays in the shipments of the next wave of iPhones
|
Malware
|
Wannacry
|
|
|
2018-07-20 12:58:03 |
Canada tackles malicious online advertising (lien direct) |
>Federal agency issues Notices of Violation to Datablocks and Sunlight Media for allegedly facilitating the installation of malware through online advertising
|
Malware
|
|
★★★★
|
|
2018-07-12 11:58:04 |
Trends 2018: Doing time for cybercrime (lien direct) |
Law enforcement and malware research join forces to take down cybercriminals
|
Malware
|
|
|
|
2018-07-10 12:57:04 |
Ammyy Admin compromised with malware again; World Cup used as cover (lien direct) |
>Website altered to serve a malware-tainted version of otherwise legitimate software with the global event in Russia acting as a smokescreen
|
Malware
|
|
|
|
2018-07-09 10:28:00 |
Certificates stolen from Taiwanese tech-companies misused in Plead malware campaign (lien direct) |
>D-Link and Changing Information Technologies code-signing certificates stolen and abused by highly skilled cyberespionage group focused on East Asia, particularly Taiwan
|
Malware
|
|
|