Browsing tag
Security researchers from Z-Lab at CSE Cybsec observed series of malware submitted to the online sandbox and a sample submitted to Virus Total that was attributed by some experts to the Russian APT28 group. The APT28 group (aka Fancy Bear, Pawn Storm, Sednit, Sofacy, and Strontium) active since 2007 and they involved in various attacks […]
Advanced mobile malware campaign targeted against 13 iPhone users in India and the attacker using an open-source mobile device management (MDM) system to control the compromised devices. It was unclear about the enrollment of this attack to manage the targeted device by attackers and the researchers believe that it could be performed via physical access […]
Anubis banking malware re-emerges again and the threat actors distributing the malware on Google Play store apps to stealing login credentials to banking apps, e-wallets, and payment cards. Hackers always finding new ways to bypass the Google play store security and distributing malware via Android apps that will act as the first step in an infection […]
Nine of the consortium establishments have been compromised The malware found at the B&B Hospitality Group (B&BHG) sale points in the New York City area may have been used to access to card payment data. The security breach occurred sometime between March 1, 2017 and May 8, 2018 affecting Del Posto, Babbo, Casa Mono, Becco, Otto […]
It wasn’t the IP camera software that we thought Recently hackers stole code signature certificates from D-Link and other Taiwan-based manufacturer of routers and cameras, employing these codes to spread malware that steals passwords and backdoors from PCs, as reported by specialists in secure data destruction. Certificates were used to cryptographically verify that D-Link and Changing […]
Insurance companies Lexington Insurance and Beazley Insurance are suing an information security firm to recover the insurance rates paid to Heartland Payment Systems, a payment management company, after the security firm did not detect malware in the client’s network for months, a problem that caused one of the biggest security breaches of the first […]
It turns out that most of the naturally distributed LokiBot malware samples are modified versions of the original sample, a security researcher has learned. For users by 2015, LokiBot is a password thief and who can collect cryptocurrency credentials from a variety of popular web browser, FTP, poker and email client, as well as technology […]
Arch Linux software repository named Arch User Repository (AUR) has been infected by malware. As many as three Arch Linux packages available on the repository have been reported to contain malware. The repository has user-submitted packages, and that is how the malware was released in the repository. A user named “xeactor” took over an ‘orphaned’ […]
There’s no doubt that Linux and Mac are more secure operating system choices as opposed to Microsoft Windows. But this doesn’t mean that hackers don’t find ways to infect the machines running these operating systems — in the past, we came across the massive Mirai botnet that controlled the networking devices running Linux. Mirai creators […]
A code signing certificate allows an application developer to sign their software before publishing to the web and the end-users can verify the author’s identity and ensure the software has not been altered. Security researchers from ESET spotted a new malware campaign that uses stolen code Signing certificate from D-Link Corporation to make it appear […]
The Rakhni Trojan is now giving bad actors the ability to infect victims either with a ransomware cryptor or a miner. An old ransomware sample has been rejiggered with a sneaky new trick – allowing adversaries to either extort money from victims via ransomware, or hijack a computer’s CPU cycles via a stealthy cryptominer. The […]
A new malware campaign that delivers Emotet Malware Via Microsoft Office documents attachments with “Greeting Card” as the document name. Attackers targeted the USA’s Independence Day to trick users into downloading the malicious document and to install the malware. The Banking Trojan EMOTET was identified in 2014, it has the capabilities of stealing personal information […]
A flash drive or USB may provide a capacity as large as 2TB or could have a small space of 256 MB but it caters the individuals in many aspects especially to store data. However, with the perspective of security, these USB drives could prove to be vulnerable to your devices. In the mid of […]
Rakhni Trojan which was first discovered in 2013 has evolved over the course of five years. As an addition to its already existing and notorious ransomware ‘feature,’ the trojan is now capable of infecting your computer with a cryptocurrency miner as well. The decision to choose the mechanism of harming your computer depends on the […]
Because the transfer of data used to function through the Sneakernet, personal computing in the 80’s and 90’s was a lot more simple. The slang term refers to the method users must adopt, copying data onto a floppy disk before physically delivering, or “sneaking,” the disk to its intended destination, as it the deliverer were wearing rubber shoes. In […]
Pentest specialists discovered a malware piece that infects systems with ransomware cryptocurrency mining programs, depending on equipment specifications and configuration, to decide which of the two attacks could be more profitable. While ransomware is a type of malware that blocks a computer and prevents access to encrypted data until a ransom is paid to remove file […]
Remember last year, Verizon released data breach investigation report that showed 80 percent of the hacking was related to stolen password. The cybercriminals used the victim’s password to gain access to their system and stole their information. This pathetic finding was the debate among organization that year. It is the need of the organizations to have a […]
After being offline for over a week, The Pirate Bay is back online with a cryptocurrency mining code. Last year, it was reported that one of the most popular torrenting websites The Pirate Bay (TPB) was using Coinhive’s cryptocurrency mining code to generate Monero coins by using computing power (CPU) of its visitors without their consent […]
Cybercriminals using a malicious macro that changes the target of Desktop Shortcuts to download malware and when the user clicks on the altered shortcut file, the malware executes. With this new campaign, attackers used common tools like WinRAR, and Ammyy Admin to gather information instead of their own tools. Security researchers from Trend Micro uncovered […]
A researcher discovered new double Zero-day exploit that affected Adobe Acrobat, Reader and older Windows 7 platforms, Windows Server 2008. This critical Zero-Day exploit discovered during the analysis conducted by Microsoft against the malicious PDF file that discovered by ESET researcher. The malicious PDF initially reported to Microsoft as a potential exploit for an unknown Windows kernel […]
Hackers targeting Cryptocurrency users On Slack and Discord chat platforms with MACOS Malware dubbed OSX.Dummy. The malware targeted users in crypto related chat groups Slack or Discord by impersonating admins or key people. Attackers shared small snippets which result in downloading the malware said Remco Verhoef, who spotted the malware first. Hackers trick’s users to […]