RunPE: How to hide code behind a legit process
2017-11-11
Hiding a process has always being challenging for malware writers, and they found many ways to do so. The tip I’ll talk about is very basic, yet simple to write, butRead More →
#AVGater attack abuse Quarantine vulnerabilities for privilege escalation
2017-11-11
The security experts Florian Bogner devised a method dubbed AVGater to escalate privileges by abusing the quarantine feature of some antiviruses. Several popular antivirus solutions are affected by flaws that could beRead More →
Ordinypt wiper ransomware targets German businesses
2017-11-11
Another wiper malware posing as a ransomware is targeting German businesses under the guise of fake job applicants inquiring about openings. Ordinypt was discovered by ID-Ransomware coder Michael Gillespie when one of the malware’s ransom notesRead More →
Using legitimate tools to hide malicious code
2017-11-11
The authors of malware use various techniques to circumvent defensive mechanisms and conceal harmful activity. One of them is the practice of hiding malicious code in the context of aRead More →
Fighting persistent malware with a UEFI scanner
2017-11-10
The short answer to the headline’s question is that a UEFI scanner is all about helping you protect your computer against people who seek to take it over by abusingRead More →
Disdain exploit kit and a side of social engineering deliver Neutrino Bot
2017-11-10
Today we picked up new activity from an exploit kit that was first discovered back in August of this year. The Disdain exploit kit, simply identified by a string of the sameRead More →
TOASTAMIGO – the first known strain of malware that uses the Toast Overlay exploit
2017-11-10
Trend Micro spotted TOASTAMIGO, the first known malware that uses the recently patched vulnerability that ties with the Toast Overlay attacks. Malware researchers at Trend Micro have spotted the first knownRead More →
Vault 8 – WikiLeaks releases source code for CIA Hive malware control platform
2017-11-10
Wikileaks released the first batch of documents starting with the source code and development logs of the Project Hive. Today the popular whistleblower organization Wikileaks announced a new Vault 8 series that shedRead More →
RUSSIA’S ‘FANCY BEAR’ HACKERS EXPLOIT A MICROSOFT OFFICE FLAW—AND NYC TERRORISM FEARS
2017-11-09
AS DANGEROUS AS they may be, the Kremlin-linked hacking group known as APT28, or Fancy Bear, gets points for topicality. Last year, the group hacked the Democratic National Committee and theRead More →
Hack the hackers. Watcha out the NEW IPCAM EXPLOIT, it is a scam!
2017-11-09
Security experts have discovered a new hacking tool dubbed NEW IPCAM EXPLOIT containing a backdoor that is offered on several underground hacking forums. Wannabe hackers, be careful out of free hackingRead More →
