Explained: WMI hijackers
2016-10-06
Windows Management Instrumentation (WMI) hijackers are proving to be a plague to remove for the average user. Even experienced users may be stumped if they run into one and don’tRead More →
The Oracle of Delphi Will Steal Your Credentials
2016-10-06
It was one of those warm summer nights, no clouds, just a bright full moon lighting the way. Someone had unknowingly stumbled upon our honeypot, completely unaware of the factRead More →
Remember 68 Million Hacked Dropbox Data? It’s available for free download
2016-10-04
The online storage platform Dropbox suffered a massive blow back in August when the company learned that over 60 million of its user accounts got hacked and credentials stolen byRead More →
OpenJPEG zero-day flaw leads to remote code execution
2016-10-03
The newly-discovered bug gives attackers the chance to execute code through the open-source JPEG 2000 codec. Cisco Talos researchers have uncovered a severe zero-day flaw in the OpenJPEG JPEG 2000Read More →
Space Wars Will Be Fought With Hacks, Not Missiles
2016-10-03
On Monday morning, a number of professionals in the aerospace industry received a rather mundane email containing a PDF ostensibly about the future of Russian aerospace programs, but which actuallyRead More →
Hacking PayPal’s Express Checkout
2016-10-01
Recent research on web security and related topics. Provided and maintained by members and friends of the Chair for Network and Data Security, Horst Görtz Institute, Ruhr-University Bochum. Do youRead More →
Hacked Steam accounts spreading Remote Access Trojan
2016-10-01
Yesterday, I stumbled on a post where a Reddit user named Haydaddict was alerting people about some hacked Steam accounts spreading malware. As I am always interested in new malware, I took a lookRead More →
A Top-Shelf iPhone Hack Now Goes for $1.5 Million
2016-09-30
AS IOS AND Android mature, the stand-off between platforms and hackers escalates in kind. Each release brings new security measures, while those who want to break in—nation-state intelligence agencies andRead More →
Kaspersky decrypts Ransomware from TeamXRat
2016-09-30
Kaspersky posted a great article about their TeamXrat Ransomware analysis and how they were able to create a decryptor for its victims. Reported back in mid September in our forums, I and other security researchersRead More →
HANCITOR DOWNLOADER ABUSING APIS, POWERSHELL COMMANDS
2016-09-27
We recently observed Hancitor attacks against some of our FireEye Exploit Guard customers. The malicious document used to deliver the Hancitor executable was observed being distributed as an attachment inRead More →
