Browsing tag
Romanian police have acted to end a series of malware ATM attacks carried out in Germany, France, Norway, Sweden, Poland, and Romania. Alleged members of an international criminal group responsible for a year-long campaign of ATM malware attacks across Europe have been rounded up, according to EU law-enforcement agency Europol. Eight people have been arrested […]
Cybercriminals are using the friendly face of Facebook and Twitter to distribute banking trojans that are specifically targeting Brazilians. The attackers are targeting Brazilian Portuguese-speaking users and are using social engineeringtactics to trick them into downloading a Spy Banker Trojan, according to a Dec. 10 Zscaler blog post. The threat actors use the social media platform […]
Attackers carry out SMS fraud via the infected phones. The Android/OpFake and the Android/Marry malware families, two banking trojans targeting mobile devices, have (improperly) stored their C&C servers inside Facebook Parse, the company’s BaaS (Backend-as-a-Service) offering. BaaS is a cloud-based service that provides mobile app developers with ready-made tools, in the form of APIs, on which […]
Why create your own rooting functions when someone else has already put the effort into doing the same thing Security researchers have detected a new trojan targeting Android devices, but this one is unique in its own right because its creators have built it on top of an Android rooting utility called Root Assistant. The […]
The trend of using adult-themed Android apps to deliver malware is ramping up, as Zscaler security researchers are warning about two new such threats that have recently appeared on the market, both with low detection rates on virus scanning systems like VirusTotal. Zscaler previously uncovered two similar threats using pornography-themed apps that infected users with […]
This remote access trojan (RAT) has capabilities ranging from manipulating the registry to opening a reverse shell. From stealing credentials stored in browsers to accessing the victims webcam. Through the Command & Control (CnC) server software, the attacker has capabilities to create and configure the malware to spread utilizing physic devices, such as USB drives, […]
Bank trojan twin pivots to smash supply chain biz. The formidable Dyreza and Dridex banking malware are back in renewed and rejigged macro-based campaigns that includes a shift by the former to target industrial supply chain organisations and by the latter to smash the UK. Both malware instances are dangerous. Dyreza is a powerful man-in-the-browser […]
Short Bytes: As more and more Linux systems are going online, the threat to the once-secure Linux systems is increasing. In a similar development, a new Trojan variant dubbed XOR DDoS is launching heavy DDoS traffic on Linux machines. A massive Trojan malware is out in the wild that cripples the Linux machines by launching […]
A trojan strand targeting Android devices has been found coming pre-installed inside the firmware of some Android smartphones by Dr.Web, a Russian-based antivirus vendor. The trojan, detected as Android.Backdoor.114.origin, was discovered in the middle of September, and after Dr.Web staff contacted the phone’s manufacturer, no change has been made to the official firmware, which is […]
Symantec’s researchers have discovered a new version of the Kovter trojan, which now mimics the Poweliks malware and is able to live on your computer’s registry, without needing to be stored on your hard drive. Kovter, first spotted in 2013, has been one of the most updated malware families around, constantly changing its MO, adapting […]
We at ESET recently discovered an interesting stealth attack on Android users, an app that is a regular game but with one interesting addition: the application was bundled with another application with the name systemdata or resourcea and that’s certainly a bit fishy. Why would a regular game downloaded from the official Google Play store […]
New Android malware was discovered, able to steal money from online banking accounts, and hide SMS notifications coming to confirm financial transactions. This new malware detected by Dr.Web as the Android.SmsBot.459.origin trojan infects users via SMS spam, which, to be more convincing, in some cases even uses the phone owner’s name. The spam SMS message […]
A malicious spam campaign that’s been doling out zipped Javascript (.js) files remains an issue, the SANS Internet Storm Center warns. The campaign was spotted earlier this year, but Brad Duncan, a handler for the site and researcher with Rackspace’s information security operations center, claims he’s received a handful of notifications from other users who […]
As researchers expected it would, CoreBot, the credential-stealing malware that surfaced last month, has added a bevy of new capabilities and reinvented itself as a robust banking Trojan. Researchers said the malware shares more similarities with Dyre, another high profile banking Trojan, than a run of the mill data-stealing Trojan. Perhaps the malware’s most telling characteristic […]
Russia’s Pawn Storm group uses a malware dropper based on the leaked Carberp source code. A group of hackers that target military and government organizations has recently borrowed code from an old online banking Trojan called Carberp, further blurring the line between cybercrime and cyberespionage. The hacker group is known by various names in the […]
New variants of the notorious Carbanak Trojan have surfaced in Europe and the United States, and researchers say that the malware now has its own proprietary communications protocol and the samples seen so far have been digitally signed. Carbanak has been in use for several years, and researchers at Kaspersky Lab earlier this year revealed the […]
A brand-new advanced banking Trojan discovered in the wild has been named “Shifu” by IBM Security X-Force, after the Japanese word for thief. The malware appears to have been active since as early as April 2015; it was unearthed by IBM Security antifraud platforms through continuous protection of customer endpoints all over the world. Shifu currently […]
Please note that the email that appears to be sent by USPS informing that due to incorrect address the firm has failed to deliver a parcel to the recipient is actually a malicious message. If you click on the “Shipping Label” web link present in that email, it will instantly download and install a malware on […]
A complex malware dubbed as Rombertik has been designed to steal user data and comprises of several layers of anti-analysis functionality and obfuscation — Its last check is highly dangerous as it can trigger itself as destruct and destroys all the files stored on the user’s home folder. Hackers are spreading the Rombertik malware through […]
A fake Facebook interface will display an attractive looking “Hot Video” link. If you hit Play button, you will be requested to download Flash Player. As usual, a Trojan will be installed on your computer if you agree to download the player — Beware of such links as this technique has become relatively common modus […]
A security firm has revealed that hackers are targeting companies utilizing services of Monster Jobs, a well-known job portal, through a new variant of the Gameover computer Malware. Gameover, the malware infecting the employment portal, is similar to the infamous Zeus banking malware whose source code was leaked in 2011. The Trojan steals log-in credentials […]