Malware

Attackers use fake British Gas site to spread TorrentLocker

By

Researchers have seen an uptick in TorrentLocker infections in the U.K. and Turkey.

More than 440K new Android malware strains found in Q1, study finds

More than 440K new Android malware strains found in Q1, study finds

By

Mobile malware jumped 6.4 percent from Q4 2015 to Q1 2015 with half of the malware being financially motivated, a G DATA study showed.

Unencrypted GoPro updates leave users vulnerable to attack

By

GoPro Studio sends update requests and receives updates over unencrypted connections leaving users vulnerable to attack.

'Prized' app developers banned from distributing malware in FTC settlement

'Prized' app developers banned from distributing malware in FTC settlement

By

The Federal Trade Commission banned app developers Equiliv Investments and Ryan Ramminger from creating and distributing malware after their "Prized" app commandeered consumer devices to mine digital currency.

Researchers analyze backdoor 'Dino' linked to Animal Farm spy group

Researchers analyze backdoor 'Dino' linked to Animal Farm spy group

By

ESET analysts believe the sophisticated backdoor is the work of French speaking developers.

Dridex banking malware spreading through new spam campaign

Dridex banking malware spreading through new spam campaign

By

Heimdal Security outlined a recent Dridex-spreading spam campaign that tries to trick users into opening a malicious macros-enabled document.

Study: Click-fraud malware often leads to more dire infections

Study: Click-fraud malware often leads to more dire infections

By

Although often considered relatively innocuous, click-fraud malware infections could be the start of serious enterprise security issues.

New Tinba variant delivered via HanJuan Exploit Kit in malvertising attack

New Tinba variant delivered via HanJuan Exploit Kit in malvertising attack

By

Researchers with Malwarebytes observed the Tinba variant being distributed as part of an attack involving advertising and URL shortening service Adf.ly.

Understanding SSL/TLS best practices and application protection

Websites are under attack. In the last year, new vulnerabilities have been uncovered that allows malicious attackers to undermine security that organizations put in place to protect themselves and their end users sensitive information.

Firms track Dyre's rise to top financial malware threat

Firms track Dyre's rise to top financial malware threat

By

In the year following Gameover Zeus takedown efforts, Dyre has steadily emerged as the financial trojan of choice among cybercriminals.

Blackshades creator sentenced to 57 months in prison

By

The owner and co-creator of the Blackshades remote administration tool (RAT) was sentenced to 57 months in prison in a U.S. federal court on Tuesday.

Data-stealing component of 'Stegoloader' hides in PNG images

Data-stealing component of 'Stegoloader' hides in PNG images

By

Stegoloader has been active since 2012, but Dell SecureWorks recently found that the threat uses a clever tactic to hide its malicious code.

'Lotus Blossom' cyberattacks hit military, gov't targets in Southeast Asia

By

A cyberespionage dubbed "Lotus Blossom" has carried out more than 50 cyber attacks against military and government targets in Hong Kong, Taiwan, Vietnam, the Philippines, and Indonesia.

Nuclear operators work to stiffen exploit kit competition

By

Cisco's Talos Group found that Nuclear EK picked up malicious tricks, like 302 cushioning and domain shadowing, to infect victims.

Study: 15-30 percent of eCommerce site visitors infected with CSIM

Study: 15-30 percent of eCommerce site visitors infected with CSIM

By

Startup security company Namogoo says that 15-30 percent of eCommerce site visitors are infected with client side injected malware (CSIM).

Microsoft deems Ask.com toolbar malware, will automatically remove

Microsoft deems Ask.com toolbar malware, will automatically remove

By

Earlier versions of the Ask.com toolbar will meet the same fate as other programs with browser search protection functionality.

Malware spams Facebook pages with porn in India

By

Porn malware is spamming Facebook timelines and news feeds across India. Authorities say its part of the Kilim malware family.

SC Congress Toronto: IBM's Lodewijkx shares company's guiding security principles

SC Congress Toronto: IBM's Lodewijkx shares company's guiding security principles

By

During the afternoon keynote at SC Congress Toronto, Lodewijkx shared IBM's guiding principles for mitigating IT security threats.

49 arrested in Europe for phishing, MitM scheme that netted millions of euro

By

Europol arrested a total of 49 suspects Tuesday as the result of a joint investigation into a cybercrime gang that defrauded victims out of six million euro.

Poweliks continues click-fraud tactics, linked to CryptoWall infections

Poweliks continues click-fraud tactics, linked to CryptoWall infections

By

Poweliks is known to hide in the registry of Windows' computers, and may ultimately spread other malware as well as carry out click-fraud for scammers.

Windows OLE bug targeted in multiple phishing campaigns

Windows OLE bug targeted in multiple phishing campaigns

By

Researchers with Fidelis Cybersecurity have observed multiple, seemingly unrelated threat actors leveraging CVE-2014-4114 to distribute malware.

MalumPOS malware that can be configured to target any POS system

MalumPOS malware that can be configured to target any POS system

By

Trend Micro researchers say MalumPOS can be configured to target any point-of-sale system, and it also takes steps to avoid detection.

Vawtrak banking malware found to use Tor2Web

By

Banking malware Vawtrak, also known as Neverquest, is now using Tor2Web to steal banking credentials and stay hidden.

Twin brothers arrested in Russia over suspected bank fraud operation

By

International law enforcement, with the help of security firm Group-IB, arrested alleged members of the criminal group in late May.

Study: New malware strains up in 2014, along with DDoS attacks

Study: New malware strains up in 2014, along with DDoS attacks

By

Check Point released its annual security study that looks at the state of cybersecurity in 2014.

Three Adobe Flash Player zero-days profiled in case study

By

Three Adobe Flash Player zero-day vulnerabilities discovered this year were distributed through exploit kits and used malvertising as their primary infection vector.

Locker ransomware author quickly apologizes, decrypts victims' files

Locker ransomware author quickly apologizes, decrypts victims' files

By

Symantec, which analyzed ransom payments made via Bitcoin, said that the author only made $169 from victims before closing up shop.

Dyre malware infections surge in 2015

Dyre malware infections surge in 2015

By

First profiled nearly a year ago, Dyre malware infections are surging around the world, and particularly in Europe and North America.

Threat group targets employees at SMBs with Grabit malware

Threat group targets employees at SMBs with Grabit malware

By

Kaspersky Lab researchers observed employees at SMBs primarily in Thailand, India and the U.S. being targeted with malware identified as Grabit.

Megaupload sites seized by DOJ now distributing malware

By

Megaupload domains that were seized by the U.S. Department of Justice three years ago are now being used to distribute malware.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US