Lurk Banker Trojan: Exclusively for Russia
2016-06-13
One piece of advice that often appears in closed message boards used by Russian cybercriminals is “Don’t work with RU”. This is a kind of instruction given by more experiencedRead More →
Bolek Banking Trojan, a Carberp Successor is spreading in the wild
2016-06-11
The Bolek banking Trojan is one of the successors of the notorious Carberp Trojan that targets both 32-bit and 64-bit Windows systems. When the source code of the Carberp Trojan wasRead More →
RIP ROP: Intel’s cunning plot to kill stack-hopping exploits at CPU level
2016-06-10
How Chipzilla and Microsoft hope to get one step ahead of hackers. Intel is pushing a neat technique that could block malware infections on computers at the processor level. That’s theRead More →
How a Bad UI Decision from Microsoft Helped Macro Malware Make a Comeback
2016-06-10
US-CERT warns about a rise in macro malware. Following numerous reports from various security firms about a large number of malware that uses macro scripts in Office documents to spread, theRead More →
Zcrypt Expands Reach as ‘Virus Ransomware’
2016-06-09
Intel Security has recently seen a new kind of ransomware–Zcrypt—that can self-replicate. This “virus ransomware” arrives via email in a malicious attachment or by usurping an Adobe Flash Player installation.Read More →
Ransomware Leaves Server Credentials in its Code
2016-06-09
While SNSLocker isn’t a stand-out crypto-ransomware in terms of routine or interface, its coarse and bland façade hid quite a surprise. After looking closer at its code, we discovered thatRead More →
Ransomware dominates the threat landscape
2016-06-08
Ransomware! Ransom Software! Encrypting Ransomware! AHHH! No doubt the last year exposed you to this term numerous times and I doubt any of it was in reference to a good event.Read More →
Android Trojan Hijacks Browsers to Redirect Users to Custom URLs
2016-06-08
Crooks use brand new potent feature to just show adware. A previously discovered and highly dangerous Android trojan has received an update in the form of a module that allows itRead More →
Hash Factory: New Cerber Ransomware Morphs Every 15 Seconds
2016-06-07
Introduction Ransomware authors are in a constant state of innovation. Two weeks ago, Invincea discovereda version of Cerber that could not only hold a victim’s machine hostage, but also potentiallyRead More →
New Jigsaw Ransomware variant with the .PAYMS Extension
2016-06-07
A new Jigsaw Ransomware variant was discovered today by security researcher Michael Gillespie that encrypts a victim’s data and then appends the.payms extension to them. The ransomware then requires a ransom paymentRead More →
CryptXXX Ransomware Learns the Samba, Other New Tricks With Version 3.100
2016-06-06
Proofpoint researchers have been tracking the rapid development of CryptXXX since they first discovered the ransomware in April [1]. In mid-May, the first major CryptXXX update temporarily broke the decryptionRead More →
Irongate malware targets industrial systems, avoids detection
2016-06-06
The unusual malware has been specifically designed to target the core systems cities rely on. A new family of malware has been developed which could have the sole purpose of disruptingRead More →
FastPOS PoS malware implements a quick exfiltration method
2016-06-04
Businesses today pride themselves on responding quickly to changing conditions. Unfortunately, cybercriminals aren’t any different. A newly discovered malware family hitting point-of-sale (PoS) systems has been found which emphasizes speed in howRead More →
DRIDEX Poses as Fake Certificate in Latest Spam Run
2016-06-04
By Michael Casayuran, Rhena Inocencio, and Jay Yaneza At a glance, it seems that DRIDEX has dwindled its activities or operation, appearing only for a few days this May. ThisRead More →
Android malware finds new ways to derive current running tasks
2016-06-04
Android banking and ad-fraud Trojans leverage ideas found in GitHub-hosted open source projects and use the UsageStats API to bypass Android 5.0 and 6.0 security enhancements. As we have discussedRead More →
BadBlock encrypts System Files. Decryptor Released by Emsisoft
2016-06-03
The BadBlock Ransomware is one poorly coded and horribly designed ransomware as it not only encrypts your files, but also trashes your system. Unlike almost all other ransomware infections, BadBlock willRead More →
This ‘Demonically Clever’ Backdoor Hides In a Tiny Slice of a Computer Chip
2016-06-02
SECURITY FLAWS IN software can be tough to find. Purposefully planted ones—hidden backdoors created by spies or saboteurs—are often even stealthier. Now imagine a backdoor planted not in an application,Read More →
Android Banker malware goes social
2016-06-02
Targets multiple banks and WhatsApp users. During a regular hunt for malware, our researchers came across an interesting malicious Android app that portrayed itself as an online app for the reputable Russian bankRead More →
TeamViewer denies hack after PCs hijacked, PayPal accounts drained
2016-06-02
Remote-control tool wobbles offline, blames bad passwords for compromises. Updated TeamViewer users say their computers were hijacked and bank accounts emptied all while the software company’s systems mysteriously fell offline. TeamViewerRead More →
