Clik here to view.
The NukeBot banking Trojan: from rough drafts to real threats
This spring, the author of the NukeBot banking Trojan published the source code of his creation. He most probably did so to restore his reputation on a number of hacker forums: earlier, he had been...
View ArticleStantinko Modular Backdoor Infected Over 500,000 Computers
Over 500,000 users have had their computers infected with a stealthy malware named Stantinko, according to a 99-page report released yesterday by Slovak antivirus maker ESET. The malware is a modular...
View ArticleClik here to view.
New Version of DarkHotel Malware Spotted Going After Political Figures
The DarkHotel hacking group, a threat actor known to engage in advanced cyber-espionage tactics, has shifted operations from targeting CEOs and businessmen to political figures. DarkHotel has its own...
View ArticleClik here to view.
Hacker “BestBuy” Admits to Hijacking Deutsche Telekom Routers With Mirai Malware
A 29-year-old man pleaded guilty in court on Friday to hijacking over 900,000 routers from the network of Deutsche Telekom, according to several reports in the German press [1, 2, 3, 4]. The man is...
View ArticleClik here to view.
MACOS FRUITFLY BACKDOOR ANALYSIS RENDERS NEW SPYING CAPABILITIES
LAS VEGAS—The FruitFly backdoor became a known entity in January, but it’s a good bet that for years it had been in the wild, undetected by analysts and security software. The macOS and OS X malware...
View ArticleClik here to view.
“Perverse” malware infecting hundreds of Macs remained undetected for years
Surveillance malware dubbed Firefly was easy to spot but flew under the radar anyway. A mysterious piece of malware that gives attackers surreptitious control over webcams, keyboards, and other...
View ArticleClik here to view.
Banking Trojan Uses Mouse Movements to Distinguish Users From Virtual Machines
In July 2017, security researchers have spotted a new version of the proficient Ursnif banking trojan that comes with a clever trick to avoid sandbox environments and automated virtual machines by...
View ArticleClik here to view.
How a Citadel Trojan Developer Got Busted
A U.S. District Court judge in Atlanta last week handed a five year prison sentence to Mark Vartanyan, a Russian hacker who helped develop and sell the once infamous and widespread Citadel banking...
View ArticleClik here to view.
New CowerSnail Windows Backdoor linked to SHELLBIND SambaCry Linux Malware
Malware researchers at Kaspersky Lab have found a new Windows Backdoor dubbed CowerSnail linked to the recently discovered SHELLBIND SambaCry Linux malware. Security experts at Kaspersky Lab have...
View ArticleShieldFS Can Stop and Revert the Effects of Ransom ware Infections
Italian researchers have developed a Windows drop-in driver and custom filesystem that are capable of detecting the telltale signs of a ransomware infection, stop any malicious actions and even revert...
View ArticleClik here to view.
Triada Trojan Found in Firmware of Low-Cost Android Smartphones
Security researchers have found malware inside the firmware of several low-cost Android smartphones, such as Leagoo M5 Plus, Leagoo M8, Nomu S10, and Nomu S20. Not all devices of these specific model...
View ArticleClik here to view.
ANDROID BANKING TROJAN SVPENG ADDS KEYLOGGER
The authors behind the Android banking malware family Svpeng have added a keylogger to a recent strain, giving attackers yet another way to steal sensitive data. Roman Unuchek, a senior malware...
View ArticleClik here to view.
More Android Phones Coming with Preinstalled Malware
Security company finds malware in Android device firmware. Security company Dr. Web has discovered new malware that comes pre-installed on a number of Android devices, warning that cybercriminals can...
View ArticleClik here to view.
Malware Attack Disrupts Merck’s Worldwide Operations
American pharmaceutical giant Merck revealed in its financial results announcement for the second quarter of 2017 that a recent cyberattack has disrupted its worldwide operations, including...
View ArticleClik here to view.
Carbanak Hackers Using Bateleur Backdoor
The financially-motivated Carbanak hacker group has added a new JScript backdoor to its cyber-weapons arsenal, along with updated macros, Proofpoint security researchers warn. Also referred to as FIN7,...
View ArticleClik here to view.
Mamba ransomware is back and targets organizations in Brazil and Saudi Arabia
Researchers at Kaspersky Lab discovered a new wave of attack leveraging the Mamba ransomware that hit organizations in Brazil and Saudi Arabia. Mamba ransomware is one of the first malware that...
View ArticleClik here to view.
Bit Paymer Ransomware Hits Scottish Hospitals
Several hospitals part of the NHS Lanarkshire board were hit on Friday by a version of the Bit Paymer ransomware. The NHS Lanarkshire board includes hospitals such as Hairmyres Hospital in East...
View ArticleClik here to view.
New ESET research uncovers Gazer, the stealthy backdoor that spies on embassies
Security researchers at ESET have released new research today into the activities of the notorious Turla cyberespionage group, and specifically a previously undocumented backdoor that has been used to...
View ArticleClik here to view.
Three Hardcoded Backdoor Accounts Discovered in Arris Modems
Security researchers have found five gaping holes in the firmware running on Arris modems, three of which are hardcoded backdoor accounts. An attacker could use any of these three accounts to access...
View ArticleClik here to view.
Locky Ransomware Attacks Ramp Up
***UPDATE*** In the past 24 hours we have seen over 23 million messages sent in this attack, making it one of the largest malware campaigns that we have seen in the latter half of 2017. Malicious email...
View Article