WINDOWS MEDIA PLAYER DRM USED FOR MALWARE
2016-09-08
Movie and TV watchers who download pirated content have long been warned of the potential for malware that might accompany their chosen media. Now use is again being made ofRead More →
Leaked video shows how government spyware Infects a Computer
2016-09-08
Hacking video demo shows government spyware in action.Have you ever wondered how does a government-sanctioned hacking actually work? Well, unless you are employed in a police department, or are aRead More →
The Missing Piece – Sophisticated OS X Backdoor Discovered
2016-09-08
In a nutshell Backdoor.OSX.Mokes.a is the most recently discovered OS X variant of a cross-platform backdoor which is able to operate on all major operating systems (Windows,Linux,OS X). Please seeRead More →
Down but Not Out! Dridex Begins Targeting Crypto-Currency Wallets
2016-09-08
The Dridex banking trojan might be involved in fewer attack campaigns, but its developers are still outfitting it with some new functionalities, including the ability to target crypto-currency wallets. NicholasRead More →
Locky now using Embedded RSA Key instead of contacting Command & Control Servers
2016-09-07
According to security researcher Timothy Davies, a new version of the Locky Ransomware, aka Zepto, has been circulating since around the September 5th 2016 that includes an embedded RSA key. This key allows LockyRead More →
Gugi Trojan Guffaws at Android 6 Security Measures… and Then Bypasses Them
2016-09-07
A mobile banking trojan called Trojan-Banker.AndroidOS.Gugi.c, or “Gugi” for short, found no problem bypassing a couple of the security measures introduced in Android 6. The name of the game isRead More →
LuaBot Is the First Botnet Malware Coded in Lua Targeting Linux Platforms
2016-09-06
LuaBot is the latest addition to the Linux malware scene. A trojan coded in Lua is targeting Linux platforms with the goal of adding them to a global botnet, security researcherRead More →
The Central Security Treatment Organization Ransomware uses the Cry Extension and Communicates via UDP
2016-09-06
A new ransomware that pretends to be from a fake organization called the Central Security Treatment Organization has been discovered by security researcher MalwareHunterTeam. When the Central Security Treatment Organization, or Cry,Read More →
How I Hacked an Android App to Get Free Beer
2016-09-05
Just recently I stumbled upon an Android app that lets you receive free products in various pubs, restaurants or cafes in exchange for points accumulated with previous purchases. When theRead More →
Mirai DDoS Trojan Is the Next Big Threat for IoT Devices and Linux Servers
2016-09-05
Mirai evolves from the source code of Gafgyt. A new trojan named Mirai has surfaced, and it’s targeting Linux servers and IoT devices, mainly DVRs, running Linux-based firmware, with the purposeRead More →
“You dirty RAT” – Spy versus Spy in the cybercrime underworld
2016-09-05
Not all malware is ransomware, even though ransomware hogs the spotlight these days.Keyloggers are still popular in the cyberunderworld, because they help crooks to steal your passwords. Armed with yourRead More →
Attackers Combine Three Botnets to Launch Massive DDoS Attack
2016-09-03
Crooks use a botnet of CCTV cameras, one of home routers, and one made up by compromised web server. An unnamed website has been at the end of a ferociousRead More →
The Nullbyte Ransomware pretends to be the NecroBot Pokemon Go Application
2016-09-02
A new DetoxCrypto Ransomware variant called the Nullbyte Ransomware has been discovered by Emsisoft security researched xXToffeeXx that pretends to be the popular Pokemon Go bot application called NecroBot, When infected, the ransomware will encrypt aRead More →
Betabot Trojan Steals Your Passwords and Then Installs Ransomware
2016-09-02
In my previous blog about password stealing malware, we discussed how Pony malware steals passwords and is as big and rampant across the internet as any single ransomware family. NowRead More →
Talos ShadowGate Take Down: Global Malvertising Campaign Thwarted
2016-09-02
Exploit kits are a class of threat that indiscriminately aims to compromise all users. Talos has continued to monitor this threat over time resulting in large scale research and evenRead More →
Double-click me not: Malicious proxy settings in OLE Embedded Script
2016-09-01
Attackers have been using social engineering to avoid the increasing costs of exploitation due to the significant hardening and exploit mitigations investments in Windows. Tricking a user into running aRead More →
New cloud attack takes full control of virtual machines with little effort
2016-09-01
Existing crypto software “wholly unequipped” to counter Rowhammer attacks. The world has seen the most unsettling attack yet resulting from the so-called Rowhammer exploit, which flips individual bits in computer memory. It’sRead More →
Hacked Redis Servers being used to install the Fairware Ransomware Attack
2016-09-01
Recently I wrote about a supposedly new ransomware called Fairware that was targeting Linux servers. When a server was hacked by Faireware, it would delete various data folders and create a ransom noteRead More →
Unsophisticated Revenge RAT Released Online for Free EXCLUSIVE
2016-08-31
RAT is still in its early stages of development. An Arabic-speaking malware coder using the name Napoleon has released a new RAT (Remote Access Trojan/Tool) called Revenge, which he’s distributing forRead More →
The Hunt for Lurk
2016-08-31
When we first encountered Lurk, in 2011, it was a nameless Trojan. It all started when we became aware of a number of incidents at several Russian banks that hadRead More →
