What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-05-28 14:33:04 | Sectigo Revokes Certificates Used to Sign Malware Following Recent Report (lien direct) | Sectigo (formerly Comodo CA) says it revoked more than 100 digital certificates following a report from Chronicle that thousands of malware samples found on VirusTotal over the past year were digitally signed by certificates issued by Comodo. | Malware | ||
|
2019-05-23 15:49:05 | Comodo Issued Most Certificates for Signed Malware on VirusTotal (lien direct) | Comodo CA (now known as Sectigo) is the Certificate Authority (CA) that issued the largest number of digital certificates used to sign malware samples found on VirusTotal over the past year, Chronicle's security researchers have discovered. | Malware | ||
|
2019-05-16 16:41:05 | Authorities Takedown GozNym Cybercrime Group That Stole an Estimated $100 Million (lien direct) | Authorities in the United States and Europe on Thursday announced the takedown of an organized cybercrime network that used the GozNym malware to steal an estimated $100 million from victims. | Malware | ||
|
2019-05-15 06:06:05 | Microsoft Patches RDS Vulnerability Allowing WannaCry-Like Attacks (lien direct) | Microsoft's Patch Tuesday updates for May 2019 address nearly 80 vulnerabilities, including a zero-day and a flaw that can be exploited by malware to spread similar to the way the notorious WannaCry did back in 2017. | Malware Vulnerability | Wannacry | |
|
2019-05-14 12:15:01 | Hackers Add Security Software Removal to Banload Banking Malware (lien direct) | There are two primary characteristics of the Brazilian hacking scene: a focus on Brazil, and the adaptability of the hackers. Very strict money laws make trans-border money movement difficult, ensuring that most targets remain local; and the hackers tend to move on to new targets when the current one becomes too difficult. | Malware | ||
|
2019-05-10 13:18:01 | Nigerian Cybercrime \'Group\' Has 400 Malicious Actors (lien direct) | SilverTerrier is not a traditional cybercrime group. It is the collective name Unit 42 of Palo Alto Networks gives to Nigerian cybercriminals. SilverTerrier continues to grow (over 400 individual actors) and evolve (from advance fee and 419 scams to business email compromise (BEC) and malware distribution). | Malware | ||
|
2019-05-10 06:11:04 | U.S. Government Details ELECTRICFISH Malware Used by North Korea (lien direct) | The U.S. Department of Homeland Security (DHS) on Thursday published a malware analysis report detailing another piece of malware used by threat actors linked to the North Korean government. | Malware Threat | ||
|
2019-05-09 05:46:00 | Information Services Giant Wolters Kluwer Hit by Malware Attack (lien direct) | Global information services giant Wolters Kluwer has taken many of its applications and platforms offline after discovering malware on its systems. The Netherlands-based company started seeing what it described as “technical anomalies” on May 6. This triggered an investigation that led to the discovery of malware. | Malware | ||
|
2019-05-08 14:40:00 | Jenkins Vulnerability Exploited to Deliver \'Kerberods\' Malware (lien direct) | A vulnerability disclosed late last year has been exploited by malicious actors to deliver a piece of malware that deploys a Monero cryptocurrency miner and looks for new victims on the internet and the local network. | Malware Vulnerability | ||
|
2019-04-10 08:55:04 | Triton Hackers Focus on Maintaining Access to Compromised Systems: FireEye (lien direct) | The tools and techniques used by the threat group behind the notorious Triton malware show that the hackers are focused on maintaining access to compromised systems, according to FireEye. | Malware Threat | ||
|
2019-04-09 18:00:05 | New Mirai Variant Targets More Processor Architectures (lien direct) | A recently discovered variant of the Mirai malware is targeting more processor architectures than before, which allows it to attack a wider range of Internet of Things (IoT) devices, Palo Alto Networks security researchers reveal. | Malware | ||
|
2019-04-09 15:36:04 | Get Ready for the First Wave of AI Malware (lien direct) | While viruses and malware have stubbornly stayed as a top-10 “things I lose sleep over as a CISO,” the overall threat has been steadily declining for a decade. Unfortunately, WannaCry, NotPetya, and an entourage of related self-propagating ransomware abruptly propelled malware back up the list and highlighted the risks brought by modern inter-networked business systems and the explosive growth of unmanaged devices. | Ransomware Malware Threat | NotPetya Wannacry | |
|
2019-04-09 14:54:01 | New Version of Flame Malware Platform Discovered (lien direct) | The Flame platform was believed dead following public exposure in 2012, but recently discovered evidence suggests that it remained alive, albeit very well hidden, security researchers at Alphabet-owned Chronicle reveal. | Malware | ||
|
2019-04-09 14:26:01 | Duqu Remained Active After Operations Were Exposed in 2011 (lien direct) | The discovery of Duqu 1.5 shows that the threat actor behind the malware did not go dark - as previously believed - after their operations were exposed by security researchers in 2011. | Malware Threat | ||
|
2019-04-04 17:23:02 | New \'Xwo\' Malware Looks for Exposed Services, Default Passwords (lien direct) | A recently identified malware family is actively scanning the Internet for exposed web services and default passwords, AT&T Alien Labs reports. | Malware | ||
|
2019-04-04 16:56:01 | Hundreds Targeted in Recent Roaming Mantis Campaign (lien direct) | Hundreds of users have been targeted with malware over the past month as part of attacks that Kaspersky Lab has linked to last year's Roaming Mantis campaign. | Malware | ||
|
2019-03-28 13:36:01 | WinRAR Vulnerability Exploited to Deliver New Malware (lien direct) | A recently patched vulnerability affecting the popular archiver utility WinRAR has been increasingly exploited by malicious actors, including to deliver new malware to targeted users. | Malware Vulnerability | ||
|
2019-03-27 15:55:03 | Nearly Half of ICS Devices Protected by Kaspersky Targeted in 2018 (lien direct) | Nearly half of the industrial control system (ICS) computers protected by Kaspersky Lab were targeted by malware and other threats in 2018, according to the company's latest industrial threat landscape report. | Malware Threat | ||
|
2019-03-27 13:32:02 | ASUS Patches Hijacked System Update Utility (lien direct) | ASUS says it has released a fix for the Live Update utility that threat actors abused in Operation ShadowHammer supply chain attack to deliver malware to hundreds of users. | Malware Threat | ||
|
2019-03-26 07:03:02 | LockerGoga Ransomware Neutralized by Shortcut Files (lien direct) | At least some variants of the LockerGoga ransomware, a piece of malware involved in several recent high profile attacks, do not encrypt files on a compromised device if a certain type of shortcut file is found in a specific Windows folder, researchers discovered. | Ransomware Malware | ||
|
2019-03-22 17:12:02 | UK Police Federation Hit by Ransomware (lien direct) | The UK Police Federation of England & Wales (PFEW) website was subject to a malware attack that it discovered on March 9, 2019. It appears that this was a ransomware attack; but the strain has not been announced. | Ransomware Malware | ||
|
2019-03-21 16:16:01 | FIN7 Hackers Use New Malware in Recent Attacks (lien direct) | The financially-motivated hacking group FIN7 has used new malware samples in a recent attack campaign, Flashpoint security researchers warn. | Malware | ||
|
2019-03-08 14:22:04 | Slack, GitHub Abused by New SLUB Backdoor in Targeted Attacks (lien direct) | Researchers from Trend Micro have come across a new piece of malware that abuses GitHub and Slack for command and control (C&C) communications. | Malware | ||
|
2019-03-07 00:10:01 | Cybersecurity Startup PolySwarm Launches Malware Detection Marketplace (lien direct) | Cybersecurity startup firm PolySwarm has officially launched at this year's RSAC. It describes itself as a 'VirusTotal replacement', and is an innovative malware detection marketplace based on blockchain contracts and virtual currency payments. | Malware | ||
|
2019-03-01 13:42:01 | PoS Clients Targeted with Cobalt Strike, Card Scraping Malware (lien direct) | Recent attacks against point-of-sale (PoS) thin clients around the world have been using card data scraping malware and the Cobalt Strike beacon, security firm Morphisec reveals. | Malware | ||
|
2019-02-28 16:24:02 | UN Aviation Agency Concealed Serious Hack: Media (lien direct) | The Montreal-based United Nations aviation agency concealed for months a hack of its computers and allowed malware to spread throughout the airline industry, Canada's public broadcaster reported Wednesday. | Malware Hack | ||
|
2019-02-26 15:31:00 | Hackers Exploit WinRAR Vulnerability to Deliver Malware (lien direct) | Malicious hackers have started exploiting a critical WinRAR vulnerability disclosed less than one week ago, just as RARLab has released the final version of the update that should patch the flaw. | Malware Vulnerability | ||
|
2019-02-20 20:54:03 | WinPot ATM Malware Resembles a Slot Machine (lien direct) | A piece of malware targeting automated teller machines (ATMs) has an interface that looks like a slot machine, Kaspersky Lab reports. Dubbed WinPot, the malware was initially detected in March last year, targeting the ATMs of a popular vendor to make the devices automatically dispense all cash from their most valuable cassettes. | Malware | ||
|
2019-02-20 14:31:05 | Cyber and Physical Convergence Opens Doors for Attackers: Report (lien direct) | 2018 saw the convergence of three separate threat trends -- two that have evolved over the last few years, and one that came to the fore during 2018. These are the merging of IoT botnets, destructive malware and cryptojacking. | Malware Threat | ★★★★★ | |
|
2019-02-19 18:25:04 | New Multi-Stage Malware Updated Daily (lien direct) | A recently detected multi-stage malware has been updated daily since the beginning of the year, Avast security researchers reveal. | Malware | ||
|
2019-02-18 10:35:00 | Storage Maker QNAP Warns of Malware Targeting Its NAS Devices (lien direct) | Network-attached Storage (NAS) device maker QNAP has published a security advisory to alert of malware targeting its NAS devices. | Malware | ||
|
2019-02-14 18:09:03 | New Variant of Shlayer macOS Malware Discovered (lien direct) | Carbon Black's security researchers recently discovered a new variant of the Shlayer malware that targets macOS versions ranging from 10.10.5 to 10.14.3. | Malware | ||
|
2019-02-13 16:31:02 | Windows App Caught Running on Mac, Installing Malware (lien direct) | A Windows application was recently observed packing the ability to run on Macs and download and install malware on the target systems. | Malware | ||
|
2019-02-13 10:19:01 | Intel SGX Can Be Abused to Hide Advanced Malware: Researchers (lien direct) | A team of researchers has demonstrated that Intel's SGX technology can be abused to hide an advanced and stealthy piece of malware that could allow attackers to steal data and conduct activities on the victim's behalf. Intel says its technology works as intended and it's not designed to block these types of attacks. | Malware | ||
|
2019-02-11 16:24:00 | Clipper Malware Slips Into Google Play (lien direct) | A piece of Android malware capable of hijacking users' crypto-currency transactions has slipped into Google Play, ESET security researchers have discovered. | Malware | ||
|
2019-02-11 13:14:03 | Linux Miner Removes Competing Malware From Infected Systems (lien direct) | A recently observed coin miner targeting Linux machines can remove a broad range of other malware families from infected systems, according to researchers from Trend Micro. | Malware | ||
|
2019-01-31 15:48:00 | Mac Malware Steals Browser Cookies, Sensitive Data (lien direct) | A recently discovered piece of Mac malware is targeting browser cookies associated with mainstream cryptocurrency exchanges and wallet service websites, as well as personal user information, Palo Alto Networks security researchers say. | Malware | ★★★★ | |
|
2019-01-31 15:16:04 | The Tricky Balance in Declining or Accepting Online Payments (lien direct) | False positives are one of the biggest problems for security controls. In malware detection they interrupt work and divert incident response away from real issues. But in ecommerce and financial fraud detection, false positives can have a direct and serious effect on profitability. In most cases, it is a balance between high detection (more secure but with more false positives), and lower detection (less secure with fewer false positives). | Malware | ||
|
2019-01-25 17:36:04 | "Cobalt" Hackers Use Google App Engine in Recent Attacks (lien direct) | Infamous "Cobalt" hacking group has been using Google App Engine for the delivery of malware through PDF decoy documents, Netskope's security researchers say. | Malware | ||
|
2019-01-24 16:17:03 | State of Malware: Attacks on Business Grow as Threats Become More Sophisticated (lien direct) | 
|
Malware | ||
|
2019-01-22 17:15:05 | Community Project Crushes 100,000 Malware Sites in 10 Months (lien direct) | Nearly 100,000 malware distribution websites have been identified and taken down over the course of 10 months as part of an abuse.ch project called URLhaus. | Malware | ||
|
2019-01-18 18:00:05 | Xbash Malware Uninstalls Cloud Security Products (lien direct) | Recent samples of the destructive Xbash Linux malware can uninstall cloud security protection products from infected servers, Palo Alto Networks reports. | Malware | ||
|
2018-12-30 13:41:03 | Cyberattack Hits US Newspaper Deliveries: Report (lien direct) | A malware attack that appears to have originated outside the US delayed the hardcopy distribution of several major newspapers, according to a report. | Malware | ||
|
2018-12-28 15:38:05 | Evasive Malware, Meet Evasive Phishing (lien direct) | In a previous column, I wrote about how evasive malware has become commoditized and described how the techniques being used in any given piece of malware had grown in number and sophistication-the layering of multiple techniques being its own form of sophistication. | Malware | ||
|
2018-12-18 17:34:00 | Backdoor Targeting Malaysian Government a "Mash-up" of Malware (lien direct) | A recently observed cyber-espionage toolkit that was used in targeted attacks against the Malaysian government in mid-2018 is made up of publicly available tools and leaked source code of backdoors, ESET says. | Malware | ★★★★★ | |
|
2018-12-17 18:44:00 | Shamoon 3 Attacks Targeted Several Sectors (lien direct) | New details have emerged about the recent Shamoon 3 attacks, including information on several malware samples, targets in additional sectors, and some links to threat groups believed to be operating out of Iran. | Malware Threat | ||
|
2018-12-12 16:20:02 | New Variant of Shamoon Malware Uploaded to VirusTotal (lien direct) | A new variant of the destructive Shamoon malware was uploaded to VirusTotal this week, but security researchers haven't linked it to a specific attack yet. | Malware | ||
|
2018-12-05 16:22:04 | Is Malware Heading Towards a WarGames-style AI vs AI Scenario? (lien direct) | Adam Kujawa, Director of Malwarebytes Labs, has been contemplating the evolution of malware attack and defense, attempting to work out strategies to stay ahead of cybercriminals in what has always been a technological game of leapfrog. | Malware | ||
|
2018-12-04 19:28:02 | Malware Dropper Supports a Dozen Decoy Document Formats (lien direct) | A recently discovered malware dropper has the ability to use nearly a dozen decoy document file formats to drop various payloads, Palo Alto Networks security researchers warn. | Malware | ||
|
2018-11-30 15:31:03 | New PowerShell Backdoor Resembles "MuddyWater" Malware (lien direct) | A recently discovered PowerShell-based backdoor is strikingly similar to malware employed by the MuddyWater threat actor, Trend Micro reports. | Malware Threat |
To see everything:
Our RSS (filtrered)
