What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-07-09 04:51:00 | Hacker hijacked original LokiBot malware to sell samples in the wild (lien direct) | An expert found evidences that demonstrate the current distributed LokiBot malware samples were “hijacked” by a third actor. According to the researcher who goes online by the Twitter handle “d00rt,” samples of the LokiBot malware samples being distributed in the wild are modified versions of the original sample. I just released an article where are […] | Malware | ||
|
2018-07-08 05:26:02 | HNS Botnet evolves and targets cross-platform database solutions (lien direct) | The HNS IoT botnet (Hide and Seek) originally discovered by BitDefender in January evolves and now targets cross-platform database solutions. Do you remember the Hide ‘N Seek (HNS) botnet? The IoT botnet Hide 'N Seek botnet appeared in the threat landscape in January, when it was first spotted on January 10th by malware researchers from Bitdefender. It was first discovered […] | Malware Threat | ||
|
2018-07-07 05:26:04 | New Rakhni variant could infect systems with either a ransomware or a miner (lien direct) | Security researchers at Kaspersky Labs have discovered a new strain of the Rakhni malware that could infect systems with either a ransomware or a cryptocurrency miner. Experts from Kaspersky Labs have discovered a new strain of the Rakhni ransomware family that could infect systems with either a ransomware or a cryptocurrency miner depending upon their configurations. “Way back in 2013 our malware analysts […] | Ransomware Malware | ||
|
2018-07-05 18:29:01 | New Smoke Loader campaign aims at stealing multiple credentials from many applications (lien direct) | Recently experts from Talos security spotted a malware campaign leveraging Smoke Loader to steal credentials from a broad range of applications. Security experts have discovered a new malware campaign leveraging Smoke Loader to steal credentials from web browsers, email clients, and other popular applications. The attack chain starts with messages using a weaponized Word document […] | Malware | ||
|
2018-06-30 17:11:00 | Recently discovered OSX.Dummy mac malware is targeting the cryptocurrency community (lien direct) | The former NSA white hat hacker and malware researcher Patrick Wardle analyzed a new mac malware dubbed OSX.Dummy that targets the cryptocurrency community. The popular experts decided to analyze the malicious code after the security researcher Remco Verhoef (@remco_verhoef) posted an interesting entry to SANS ‘InfoSec Handlers Diary Blog’ titled “Crypto community target of MacOS […] | Malware | ||
|
2018-06-28 06:35:01 | Talos releases ThanatosDecryptor, a free Thanatos Ransomware decryptor (lien direct) | Experts from Cisco's Talos team released a free decryption tool for the Thanatos ransomware to recover the files without paying the ransom. The Thanatos ransomware first appeared in the threat landscape in February when it was discovered by researchers at the MalwareHunterTeam. The experts from Talos believe the malware is being actively developed, it was being distributed […] | Ransomware Malware Tool Threat | ||
|
2018-06-26 13:47:05 | Recent spam campaigns powered by Necurs uses Internet Query File attachments (lien direct) | Trend Micro experts reported the Necurs botnet has been using Internet Query (IQY) files in recent spam campaigns to bypass security protections. The Necurs botnet is currently the largest spam botnet, it has been active since at least 2012 and was involved in massive campaigns spreading malware such as the Locky ransomware, the Scarab ransomware, […] | Spam Malware | ||
|
2018-06-25 06:52:02 | CSE Malware ZLab – A new variant of Ursnif Banking Trojan served by the Necurs botnet hits Italy (lien direct) | Malware researchers from CSE Cybsec ZLab discovered a missed link between the Necurs Botnet and a variant of the Ursnif trojan that recently hit Italy. Starting from 6th June, a new version of the infamous banking trojan Ursnif hit Italian companies. This malware is well known to the cyber-security community, the Ursnif banking Trojan was […] | Malware | ||
|
2018-06-22 17:19:05 | Crooks exploit CVE-2018-7602 Drupal flaw, aka Drupalgeddon3 to deliver Monero miner (lien direct) | Crooks are attempting to exploit a recently patched Drupal vulnerability, tracked as CVE-2018-7602, to drop Monero mining malware onto vulnerable systems. The CVE-2018-7602 flaw is a highly critical remote code execution issue, also known as Drupalgeddon3, that was addressed by the Drupal team in April with the release of versions 7.59, 8.4.8 and 8.5.3. The security patch for the […] | Malware | ||
|
2018-06-22 08:27:00 | GZipDe Downloader spotted serving a Metasploit backdoor (lien direct) | Security experts from AlienVault have spotted a new piece of malware named GZipDe that was used in a cyber-espionage campaign. GZipDe is downloader that is used by threat actors to fetch other payloads from a server controlled by attackers. The malware was detected after user from Afghanistan has uploaded a weaponized Word document on VirusTotal service, the […] | Malware Threat |
To see everything:
Our RSS (filtrered)
