What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-06-26 10:44:01 | Malware attack infecting patched Windows PCs. (lien direct) | The attack starts with an email and .xls attachment with content in the Korean language. Surprisingly, even if your Windows PC is fully patched, you might still be at risk. Office applications have always been the target for cybercriminals to attack Windows PCs and they are doing it yet again. New reports suggest about this […] | Malware | ||
|
2019-06-25 22:17:03 | Botnet Abusing Android Debug Bridge. (lien direct) | A new cryptocurrency-mining botnet malware is abusing Android Debug Bridge (ADB) and SSH, according to Trend Micro. “This attack takes advantage of the way open ADB ports don't have authentication by default, similar to the Satori botnet variant. This bot's design allows it to spread from the infected host to any system that has had […] | Malware | Satori | |
|
2019-06-11 10:02:02 | U.S. Government websites are still redirecting to porn sites a year on. (lien direct) | Dozens of U.S. government websites appear to contain a flaw enabling anyone to generate URLs with their domains that redirect users to external sites, a handy tool for criminals hoping to infect users with malware or fool them into surrendering personal information. Source: Gizmodo | Malware Tool | ||
|
2019-06-11 10:01:02 | “Triple Threat” cyber-attack targets Lake City. (lien direct) | Lake City was targeted by a malware attack. The ransomware known as “Triple Threat” combines three methods of attack to targeted systems. Many city systems are out of order. All email systems are inoperable. Most land-lines are also out of order. All emergency services, including police and fire, remain intact. Source: WCJB | Ransomware Malware | ||
|
2019-06-10 15:01:00 | Malware peddlers tweak old exploit to target Office users. (lien direct) | Emails delivering RTF files equipped with an exploit that requires no user interaction (except for opening the booby-trapped file) are hitting European users' inboxes, Microsoft researchers have warned. The exploit takes advantage of a vulnerability in an older version of the Office Equation Editor, which was manually patched by Microsoft in November 2017. Source: HelpNet […] | Malware Vulnerability | ||
|
2019-06-10 09:31:05 | Ramnit Trojan Resumes Attacks On European Financial Institutions To Spark Tax Season Mayhem. (lien direct) | The Ramnit banking Trojan has returned to its old hunting ground after recent forays into the e-commerce space, according to new research from F5 Labs. The discovery follows analysis by F5 Labs and F5's EMEA-based F5 Security Operations Center (SOC) examining active Ramnit banking Trojan Malware configurations in February and March 2019. All signs indicate […] | Malware | ||
|
2019-05-31 11:58:02 | (Déjà vu) Canadian regulators using Civil Anti-Spam law to fine malware purveyors. (lien direct) | Canadian government regulators are using the country's powerful new anti-spam law to pursue hefty fines of up to a million dollars against Canadian citizens suspected of helping to spread malicious software. Source: Krebs on Security | Malware | ||
|
2019-05-30 14:19:05 | Decline in Ransomware phishing campaigns. (lien direct) | Malicious URL links in emails are now one of the key threats spreading malware into computer systems, outnumbering email attachments five to one in prevalence. Source: CBR | Ransomware Malware | ★★★★ | |
|
2019-05-30 14:18:05 | Turla Malware discovered attacking European Diplomats. (lien direct) | Turla, an infamous advanced persistent threat (APT) group, is using new PowerShell-based tools that provide direct, in-memory loading and execution of malware, executables and libraries. Source: Infosecurity Magazine | Malware Threat | ★★★★ | |
|
2019-05-24 10:13:02 | Number Of Malicious Mobile Banker Packages Circulating Online Grew By 58% In Q1 2019. (lien direct) | Kaspersky Lab researchers have uncovered a worrying rise in malware designed to steal credentials and money from users' bank accounts: in Q1 2019, researchers found 29,841 files of such malware, up from 18,501 in Q4 2018. Overall, attacks on more than 300,000 users were detected. These are among the main findings of Kaspersky Lab's IT […] | Malware | ||
|
2019-05-14 13:14:00 | City of Washington\'s comms systems shut down by malware. (lien direct) | The city of Washington's entire communications system was shut down by a malware attack last week. Now, 11 Investigates uncovered nearly half a dozen local police departments that are dealing with a separate hack involving their records. Whitehall and Munhall police operate independently in just about every way imaginable. But those departments, along with at […] | Malware Hack | ||
|
2019-05-10 09:41:03 | (Déjà vu) Site Promoting KeePass Password Manager Pushes Malware. (lien direct) | A site that pretends to promote the popular KeePass password management software is actually distributing malware on unsuspecting visitors. This site is part of a larger network of sites distributing adware bundles as free programs. Last year, we reported that fake sites were created to promote popular software, but when we analyzed the distributed files, […] | Malware | ||
|
2019-04-18 12:36:01 | Malware installed on PoS systems Compromised credit card data. (lien direct) | A Point-of-Sale (PoS) data breach exposed more than 2 million debit and credit cards that belongs to the diners at Earl Enterprises. Earl Enterprises is a restaurant company owning national chains such as Earl of Sandwich, Buca di Beppo, and Planet Hollywood. Although the chain restaurant operator have not disclosed themselves how many customers got […] | Data Breach Malware | ||
|
2019-04-18 12:25:01 | (Déjà vu) Financials and Retailers at risk to New Malware Campaign. (lien direct) | The attack uses a legitimate remote access system as well as several families of malware. A new wave of cyberattacks uses legitimate remote access software to take over user accounts in financial services and retail organizations. Source: Dark Reading | Malware | ||
|
2019-04-11 12:28:03 | New Hoplight malware marks re-emergence of Lazarus Group. (lien direct) | The Lazarus Group hacking operation, thought to be controlled by the North Korean government, has a new malware toy to pitch at potential targets and the US is getting worried about it. This according to a report from US-Cert, which say that the group (also known as “Hidden Cobra”) has a new piece of spyware […] | Malware Medical | APT 38 | |
|
2019-04-10 10:55:01 | Android attacked by MuddyWater group. (lien direct) | A cyber espionage group believed to be out of Iran and known for targeting telecommunications providers and government bodies in the Middle East has added to its arsenal malware for targeting Android devices. The so-called MuddyWater hacking group, which has been in action since at least 2017, also has created new backdoor malware for spying […] | Malware | ||
|
2019-04-10 10:53:05 | More critical infrastructure targeted by Triton malware. (lien direct) | A highly capable malware reportedly used in a failed plot to blow up a Saudi petrochemical plant has now been linked to a second compromised facility. FireEye researchers say the unnamed “critical infrastructure” facility was the latest victim of the powerful Triton malware, the umbrella term for a series of malicious custom components used to […] | Malware | ||
|
2019-04-09 09:23:00 | The Infamous Flame Malware has remerged in a new form. (lien direct) | Researchers at Alphabet's Chronicle Security say they have discovered what appears to be a new version of Flame malware that popped up in 2014 and likely remained active until 2016. The finding shows that instead of killing their operation, the attackers simply re-tooled their spy kit and added strong encryption to make it harder to […] | Malware | ||
|
2019-04-08 12:45:02 | Malware spreads through Google Play Store affecting millions of devices. (lien direct) | Android fans are being warned about the re-emergence of a malware that's infected millions of devices and a Google Play Store threat. Android is one of the most used pieces of software in the world with over two billion people using it each and every month. The Google mobile OS has been subject to some […] | Malware | ||
|
2019-04-04 12:58:02 | Healthcare security: malware can add or remove cancerous nodes in CT scans. (lien direct) | Researchers are presenting with a malware that not only modifies CT scan results, it also does them with such realism that it manages to fool professionals into misdiagnosing the presence or absence of cancer. A blind study that involved 70 altered CT lung scans showed proved that both radiologists and a lung-cancer screening software were […] | Malware | ||
|
2019-04-04 12:56:02 | High school WiFi hacked by students trying to avoid a test. (lien direct) | Two Secaucus, N.J., high school freshmen have been accused of allegedly knocking their school's WiFi system offline possibly using a malware as a service deal to create the situation. The two 14-year-old boys were arrested last week and charged with computer criminal activity and conspiracy to commit computer criminal activity, according to CBS New York. […] | Malware | ||
|
2019-04-04 12:31:05 | Bashlight\'s is back, and in better shape. (lien direct) | The Bashlight IoT malware has been updated with cryptomining and backdoor commands targeting WeMo devices.The malware initially gained notoriety for its use in large scale DDoS attacks in 2014 but has recently switched over to infecting IoT devices and has even been known to exploit Shellshock to gain a foothold into vulnerable devices. Bashlight only […] | Malware | ||
|
2019-04-04 12:30:05 | (Déjà vu) Necurs botnet suspected of spreading 10 malware families with US web servers. (lien direct) | Researchers have uncovered over a dozen servers, unusually registered in the United States, which are hosting ten different malware families spread through phishing campaigns potentially tied to the Necurs botnet. On Thursday, researchers from Bromium said they have monitored scams connected to this infrastructure during the May 2018 to March 2019 time period. Five families […] | Malware | ||
|
2019-04-04 12:29:02 | (Déjà vu) Windows 10: glitch messages look like malware and scare users. (lien direct) | A configuration mistake in the Microsoft News app caused Window 10 users to receive strange test notifications, which caused them to think they were infected. Last Friday, users on Reddit began posting about strange notifications they were receiving in the Windows 10 action center. These notifications indicated they were from the Microsoft News app, but […] | Malware | ||
|
2019-04-04 12:28:03 | (Déjà vu) Python-based bot scanner can help criminals spread malware. (lien direct) | Code and infrastructure from two known malware families have been observed with a new threat named Xwo, which helps operators of the MongoLock ransomware discover unprotected web services reachable over the internet. MongoLock targets unprotected MongoDB databases, wiping them from the server and demanding a ransom to restore them. Xwo is a Python-based bot scanner […] | Ransomware Malware Threat | ||
|
2019-04-03 09:35:03 | Fans of Swedish Youtuber PewDiePie spread malware to increase channel subscriptions. (lien direct) | PewDiePie, the famous Swedish Youtuber, is no stranger to controversy. This time he is in the news again for the wrong reason after a user, who claims to be his fan, released ransomware with a note that reads 'Subscribe to PewDiePie'. According to The Independent, the ransomware PewCrypt is designed in such a way that […] | Ransomware Malware | Uber | ★★★★ |
|
2019-03-29 12:20:02 | Banking Trojan Has The Potential To Target Over 100 Banking Apps. (lien direct) | Group-IB researchers uncovered the malware that casts a wide net and is complete with fully automated features designed to steal both fiat and crypto currency from user accounts by leveraging a device's Accessibility Service mode to bypass security bank features. Gustuff has the potential to target users of more than 100 banking apps and is […] | Malware | ★★ | |
|
2019-03-29 12:17:05 | Office Depot Settles Lawsuit Over Scam to Sell Malware Protection Software. (lien direct) | The fear of being hacked was allegedly the hook used by Office Depot, its subsidiary OfficeMax and a California-based tech-support vendor to dupe customers into paying for computer repair and technical services they didn’t need, according to the Federal Trade Commission. Although not admitting any wrongdoing, Office Depot and California-based Support.com have agreed to pay […] | Malware | ||
|
2019-03-26 20:07:00 | (Déjà vu) Stegongraphy: Revival of Malware hiding in images. (lien direct) | Low-key but effective, steganography is an old-school trick of hiding code within a normal-looking image, where many cybersecurity pros may not think to look. A recent Fortinet report found that one of these threats in need of monitoring is the recent revival of the “old school” trick of steganography. Source: Threatpost | Malware | ★★★ | |
|
2019-03-26 20:04:00 | Supply chain attack against ASUS live update. (lien direct) | For nearly half a year, computer maker ASUS was unwittingly pushing malware that gave hackers backdoor access to thousands of computers, according to Kaspersky Lab. Hackers managed to compromise one of the company’s servers used to provide software updates to ASUS machines. The attack, which has been given the name ShadowHammer was discovered late last year […] | Malware | ||
|
2019-03-21 17:53:02 | (Déjà vu) Two new Fin7 malware samples discovered. (lien direct) | Despite the 2018 crackdown on Fin7, the cybercrime group has been ramping up its efforts with two new malware samples and an attack panel. Source: Threatpost | Malware | ★★ | |
|
2019-03-15 11:10:01 | New malware affects e-commerce sites to steal payment data. (lien direct) | The rash of e-commerce sites infected with card-skimming malware is showing no signs of abating. Researchers on Thursday revealed that seven sites-each with more than 500,000 collective visitors per month-have been compromised with a previously unseen strain of sniffing malware designed to surreptitiously swoop in and steal payment card data as soon as visitors make […] | Malware | ||
|
2019-03-13 12:05:00 | New variant of Ursnif banking Trojan discovered by Cybereason. (lien direct) | A new variant of an infamous banking Trojan malware with a history going back over ten years has emerged with new tactics to ensure it’s harder to detect. The malware aims to hunt out financial information, usernames, passwords and other sensitive data. The Ursnif banking Trojan is one of the most popular forms of information-stealing malwaretargeting […] | Malware | ||
|
2019-03-12 11:43:01 | (Déjà vu) Slack being used by cybercriminals to hide malware. (lien direct) | A group of hackers is using a previously undocumented backdoor program designed to interact with attackers over Slack. While abusing legitimate services for malware command-and-control purposes is not a new development, this is the first time researchers have seen Slack, a popular enterprise collaboration tool, being used in this way. The backdoor was detected by […] | Malware | ||
|
2019-03-11 12:19:05 | Malware And Malicious Insiders Accounted For One-Third Of All Cybercrime Costs Last Year, According To Report From Accenture And Ponemon Institute. (lien direct) | The cost to companies from malware and “malicious insider”-related cyberattacks jumped 12 percent in 2018 and accounted for one-third of all cyberattack costs, according to new research published today by Accenture (NYSE: ACN) and the Ponemon Institute. Based on interviews with more than 2,600 security and information technology (IT) professionals at 355 organisations worldwide, Accenture's […] | Malware | ||
|
2019-03-08 14:55:02 | (Déjà vu) Russian doll malware targets Pirate Bay users. (lien direct) | Researchers at Kaspersky Lab have uncovered new malware spreading through Pirate Bay, the popular torrent tracker. The malware, which aims to infect users’ PCs with adware and tools for additional malware installation, has a multi-layered structure. Due to its hidden, seemingly endless stack of functionality, the threat has been named PirateMatryoshka, after the traditional Russian […] | Malware Threat | ||
|
2019-03-06 11:42:02 | Gigamon ATR Examines How Prolific Cyberthreats Traverse Networks And What You Can Do About It. (lien direct) | Gigamon Inc. (“Gigamon”), the essential element of security infrastructure, providing pervasive visibility to network traffic across physical, virtual, and cloud environments, announced the release of the latest research report from Gigamon Applied Threat Research (ATR), How the Most Prolific Malware Traversed Your Network Without Your Knowledge. Based on observed attack data over the second half […] | Malware Threat | ||
|
2019-02-27 15:33:04 | Social Media Drives $3.2bn+ in Black Hat Profits. (lien direct) | Social media platforms are a major conduit for malware and a highly effective marketplace for black hat resources, generating cybercrime worth over $3.2bn every year, according to Bromium. The security vendor's latest report, Social Media Platforms and the Cybercrime Economy, is the result of a six-month study by Mike McGuire, senior lecturer in criminology at the University […] | Malware | ★★★★ | |
|
2019-02-22 14:13:01 | (Déjà vu) Adverts selling logins for hacked accounts on adult websites doubled in 2018. (lien direct) | The number of adverts selling logins for hacked accounts on adult websites doubled in 2018. The number of detections for malware strains that hunt for login credentials on adult-themed websites tripled in 2018, while the number of adverts selling access to hacked accounts on porn portals doubled, according to a report published today by Kaspersky […] | Malware | ||
|
2019-02-14 10:23:03 | QNAP acknowledges mystery malware in NAS but there\'s no patch. (lien direct) | Taiwanese NAS maker QNAP has admitted its devices are affected by mysterious malware that alters hosts files on infected boxen following The Register’s report.In a security advisory published yesterday, QNAP told its customers: “A recently reported malware is known to affect QNAP NAS devices. We are currently analyzing the malware and will provide the solution […] | Malware | ||
|
2019-02-14 10:22:05 | Beware of the Windows Executable that Masks Mac Malware. (lien direct) | A new strain of MacOS malware disguises itself as a Windows executable file to evade detection and embed itself on a system. But the malware authors aren’t exactly in the cross-platform avant-garde: the .EXE file that carries the MacOS malware will not, in fact, execute on a Windows machine. Source: Dark Reading | Malware | ||
|
2019-02-14 10:22:01 | GreyEnergy malware – tricks to evade detection. (lien direct) | An analysis of the malware linked with the 2015 cyber-attacks on the Ukrainian power grid reveals that hackers added a large amount of junk code to their malware in a bid to evade detection and to confuse security researchers. Source: Computing | Malware | ||
|
2019-02-11 15:40:02 | Tip-Off means Fake MetaMask Crypto Malware Pulled From Google Play. (lien direct) | Decentralized app (DApp) MetaMask is facing fresh problems from cryptocurrency scammers after malware impersonating the tool appeared on Google Play, cybersecurity company Eset reported Feb. 8. The malware, which replaces computer clipboard information in an attempt to steal cryptocurrency, was removed by Google at the beginning of the month after a tip-off from Eset researchers. […] | Malware Tool | ||
|
2019-02-11 15:35:00 | Check your hosts file for suspect anti-antivirus entries if you use QNAP NAS. (lien direct) | Network attached storage maker QNAP’s customers have reported being hit by a mystery strain of old-school malware that disables software updates by hijacking entries in host machines’ hosts file. The malware’s full effects are, as yet, unknown – but users have reported that the most visible symptom is that some 700 entries are added to […] | Malware | ||
|
2019-02-01 12:32:04 | Kwik-FIT Delays Customer Repairs Due to Malware Attack. (lien direct) | Car servicing chain Kwik-Fit has suffered a malware attack that has caused delays in customers’ car repairs.The company initially would only confess to El Reg that it had been infected by an unspecified “virus” in its “IT network” over the weekend, and the BBC later reported “malware” was to blame. From the scant facts publicly […] | Malware | ||
|
2019-01-31 10:26:00 | High Level” Cybercrime Gang Arrested in Birmingham. (lien direct) | A group of five individuals, aged between 29 and 53, has been arrested by the Met Police's Cyber Crime Unit (MPCCU) in relation to a range of offences, including conspiracy to defraud and money laundering.Their criminal network involved in the deployment of malware and associated fraudulent methods targeting businesses and organisations across the UK. Officers […] | Malware | ||
|
2019-01-24 20:43:04 | Mac Users targeted by Malware in Ad-Based images. (lien direct) | 191, 970 bad ads and an estimated 1 million users have been impacted by a Malware in Ad-based images, researchers have discovered. A massive adware campaign that hides malware in image files using steganography techniques has impacted up to a million Mac users. When a user clicks on an infected image, the malicious ad infects […] | Malware | ||
|
2019-01-24 11:30:00 | 100,000 Malware distribution websites taken down. (lien direct) | 265 researchers from around the world have taken down 100,000 Malware distribution websites as part of a campaign known as URLhaus, a project started by abuse.ch, a non-profit cybersecurity organisation in Switzerland. The project started in March and has a recorded daily average 300 submissions. However, web hosting providers are still slow to respond to […] | Malware | ||
|
2019-01-16 15:51:01 | Disclosure of Chilean Redbanc Intrusion Leads To Lazarus Ties. (lien direct) | By Vitali Kremez, Director of Research, Flashpoint Flashpoint analysts believe that the recently disclosed intrusion suffered in December 2018 by Chilean interbank network Redbanc involved PowerRatankba, a malware toolkit with ties to North Korea-linked advanced persistent threat (APT) group Lazarus. Redbanc confirmed that the malware was installed on the company's corporate network without triggering antivirus […] | Malware Threat | APT 38 | |
|
2019-01-09 16:51:00 | Botnets And Machine Learning: A Story Of “Hide And Seek”. (lien direct) | By Leonidas Plagakis, Security Engineer, RiverSafe Malware authors have always been trying to update their software and evolve their techniques in order to take advantage of new technologies and bypass security measures. Botnets are a perfect example of how cyber criminals have managed to accomplish that over the last decade. Their wide spread and severe […] | Malware | ★★★★ |
To see everything:
Our RSS (filtrered)
