Browsing tag
A new trojan dubbed SpeakUp exploiting six different Linux distributions with know vulnerabilities. The campaign primarily targeting East Asia and Latin America, including AWS, hosted machines. Security researchers from checkpoint detected the campaign that implants the backdoor and evades the detection from all security vendors. The trojan dubbed SpeakUp propagates with the infected subnet and […]
OceanLotus group known for Multiple attack campaigns around the globe, the threat actor group targets private sectors across multiple industries, foreign governments, activists, and dissidents connected to Vietnam. Palo Alto Networks’ Unit 42 division researchers observed a new custom malware family dubbed “KerrDown” used by the threat actor group since 2018. This ongoing campaign primarily […]
A new dangerous Mac Malware discovered that stealing the cookies when users visiting a website that belongs to cryptocurrency exchanges and wallet service along with saved credentials from Chrome Browers. “Web cookies are widely used for authentication. Once a user logs into a website, its cookies are stored for the web server to know the […]
Cybercriminals are using new sophisticated techniques to spread CSV malware via Google sheets instead of using Microsoft Excel sheet which is often used by malicious hackers. Cyber attackers are day today increasing and the attackers are always one step ahead to launching sophisticated cyber attackers which is very difficult to detect and mitigate. Basically .CSV […]
Iranian cyber espionage group APT39 focus on stealing on personal information o perform monitoring, tracking, or surveillance operations against specific individuals. The group carrying a widespread campaign focused their operations in the Middle East, the U.S. and South Korea. Following are the industries targeted including telecommunications, travel industries, high-tech industry, and government entities. “We have […]
Formbook campaign with what looks like a few changes. Recently the criminals distributing this malware have been using .exe files inside various forms of an archive, including .iso, .ace, .rar. , zip. Frequently they use various Microsoft Office Equation Editor exploits to contact a remote site & download the payload. Very occasionally I have seen […]
Threat actors misuse the popularity of the TeamViewer Tool and utilizing it to drop the malware on victim devices that steal sensitive data. Teamviewer is the most popular tool used for remote control, desktop sharing, online meetings, web conferencing and file transfer between computers. A Security researcher who goes by name FewAtoms spotted a malicious […]
Cyber Criminals now using new Stenography technique to distribute a powerful Obfuscated PDF exploit in order to compromise the targets and evade the detection. Malicious hackers are always finding new techniques to exploit the vulnerabilities and compromising victims machine without more user interaction to increase the success ratio of the attack. Steganography is the technique […]
A new Ransomware called Anatova has been discovered in a private peer to peer network which is believed to be a very serious threat. This code is prepared for a modular extension that also checks for connected network-shares and will encrypt the files on the identified shares too. Outline of Anatova Anatova uses the icon […]
Welcome to the Massive Data breach of 2019, around 773 million datas contains email addresses and passwords were breached and circulated in hacker forums. This data breach seems to be bigger and critical than earlier breaches like “Equifax” and “Marriott International“. Let’s have a look into This Massive Data Breach The data set was first […]
Ryuk first appeared in August 2018, and while not incredibly active across the globe, at least three organizations were hit with Ryuk infections over the course of the first two months of its operations, landing the attackers about $640,000 in ransom for their efforts. According to CrowdStrike analysis from late last week, Grim Spider has […]
A chrome extension that still available on Chrome Web Store steals the payment card information from website forms visited by the users. The extension found to be active form February 2018, and the extenstion hidden from regular searches and will be available only through the link that attackers use to spread. Malicious extension named Reader […]
Researchers discovered a major security vulnerability in online flight ticket booking system that affected almost half of the fight travelers around the world. The Vulnerability was discovered by Noam Rotem , an Isreal security researcher when he was trying to book a flight in ELAL Israel Airlines. He uncovered this critical flaw in the widely […]
The City of Del Rio IT system was compromised by the Ransomware attack that leads to shut down the regular operation and the servers are disabled. Del Rio is a city in and the county seat of Val Verde County, Texas reported that the powerful Ransomware hit on their IT system. As a precaution step, Management Information Services (MIS) […]
USB-IF announced USB Type-C Authentication Program to confirm the authencity of the USB device USB device, USB cable or USB charger. The Authentication program is the milestone for USB security protocol. The authentication program protect against non-compliant USB chargers and to mitigate risks from malicious firmware/hardware in USB devices attempting to exploit a USB connection. […]
A new landscape study states that an upcoming mobile devices may comes with per-installed mobile malware along with malicious code in it. Per-installed malware means that the mobile device already installed with malicious code in system level that cannot be removed easily. There are two types of pre-installed malware that is based on the apps […]
More than 2.4 million Blur password manager users data has been exposed online, the Blur password management service owned by Abine. According to Blur, the hackers intruded on December 13th, 2018 and they are working with law enforcement officials to determine how the intrusion occurred. The file containing the user’s information that is prior to […]
The tendency for companies to adopt consumer technologies (also known as commoditization) is increasing rapidly and that means a change in the operation and management of corporate environments and business applications. Organizations have the opportunity to take advantage of these technologies to increase the productivity of their employees and not only the efficiency but also […]
A disk wiping Shamoon malware performing destructive attack sample using an image of a burning US Dollar. This malware was uploaded in virus total from France on December 23, 2018, and it signed with a digital certificate from Baidu. Previous Attack destructive malware dubbed Shamoon V3 targeting European oil and gas company in the Middle […]
A new campaign that delivers malicious PDF file that leads to download the file malicious APK file to the user’s device. Quick heal security researchers observed malicious PDF files sent to users as an attachement through phishing emails and attachements are des9igned in the way that tempts the users to open it. The PDF file […]
Researchers recently observed that cyber criminals using a weaponized memes in order to communicate with malware for various malicious operations. Memes are nowadays using for fast communication methods to spreading news which is now abused by cyber criminals to reach victims in a very effective way. Attackers using Steganography to embed the malicious payload inside of […]