Malware

Firefox 32 feature could cut undetected malware downloads 'in half'

By

Mozilla plans to introduce a feature in Firefox 32 that, based on preliminary testing, could cut the amount of undetected malware downloads in half.

Study: Asian Android users at higher risk of malware exposure

By

Cheetah Mobile's new study showed that Asian Android users have a two to three times greater risk of downloading malware onto their devices.

Malware used to compromise payment cards at Wendy's restaurant in Michigan

By

Customers who paid with credit and debit cards at a Wendy's in Michigan may have had their payment card compromised if they used it at the restaurant for about a month prior to July 15.

Details emerge about PlugX/Kaba RAT in Pacific Rim

By

FireEye researchers took a closer look at the malware and provided details in a blog post last week.

New backdoor 'Baccamun' spreads through ActiveX exploit

By

Symantec researchers revealed that the backdoor is dropped after attackers exploit a Windows ActiveX vulnerability.

Outdated browsers put U.K. users at risk of malware

By

A blog post on Check and Secure website said 70 percent of U.K. users haven't fully updated their internet browsers

Andromeda bot spreads Tor-using CTB-Locker ransomware

Andromeda bot spreads Tor-using CTB-Locker ransomware

By

Kaspersky Lab has observed Andromeda bot being used to deliver CTB-Locker, a new ransomware that hides its command-and-control server on the Tor network.

With RATs at their disposal, 419 scammers target businesses

With RATs at their disposal, 419 scammers target businesses

By

A new report reveals how Nigeria's 419 scammers are spreading malware to pocket business funds.

InfoSec pros worried BYOD ushers in security exploits, survey says

InfoSec pros worried BYOD ushers in security exploits, survey says

By

A study by the Information Security Community on LinkedIn found most organizations don't have proper polices and support for BYOD.

Android/Simplocker adds tricks, including ransom message in English

By

Android/Simplocker ransomware now encrypts archive files, asks to be installed as a Device Administrator, and delivers an English-language ransom message.

Metro.us site compromised, serves malicious code

By

Researchers at Websense say visitors to Metro.us are sent to websites hosting the Rig Exploit Kit, used in the past to distribute CryptoWall.

Angler Exploit Kit delivers Tor-using Critroni ransomware

By

The command-and-control for a new ransomware identified by Microsoft as Critroni is hidden on the Tor network.

Op Emmental spoofs bank sites, uses Android malware to maintain account access

Op Emmental spoofs bank sites, uses Android malware to maintain account access

By

On Tuesday, Trend Micro released a report detailing Operation Emmental, which targets victims in Austria, Switzerland, Sweden and Japan.

On Facebook, fake video of disrobing woman leads to malware

By

Shortened URLs on Facebook, leading to a risqué webcam video, are actually being used to spread malware.

Report: Zero-day attack used in 2010 NASDAQ breach

By

Bloomberg revealed that hackers used two zero-day flaws to breach NASDAQ's servers in 2010.

U.S. hosted most Q2 malware, top 10 ISPs still main sources

U.S. hosted most Q2 malware, top 10 ISPs still main sources

By

Solutionary's SERT research team analyzed threats for the second quarter for its Quarterly Threat Intelligence Report.

Benjamin F. Edwards tells New Hampshire AG CryptoWall led to breach

By

The CryptoLocker copycat ransomware was behind the May breach, the firm said in a notification letter to New Hampshire's attorney general.

'Neverquest' banking trojan evolves as U.S. attacks continue

By

On Wednesday, Symantec released details on the malware's developed features.

Severe RCE vulnerability affects several Cisco products

Severe RCE vulnerability affects several Cisco products

By

An RCE vulnerability existing in several Cisco Wireless Residential Gateway products can be exploited to serve up fraudulent advertisements and deliver malware.

Russian espionage malware adapted for ransomware scams

Russian espionage malware adapted for ransomware scams

By

Sentinel Labs dubbed the repurposed malware "Gyges."

ScarePakage ransomware warns Android users of FBI probe

By

Lookout has identified a ScarePakage mobile ransomware that renders Android phones inoperable and attempts to extort ransom via MoneyPak vouchers.

Certificates associated with malware added to SSL Blacklist

By

As of Wednesday afternoon, 127 SSL certificates associated with malware and botnet activities have been blacklisted.

Compromised Japanese porn websites distribute banking trojan

Compromised Japanese porn websites distribute banking trojan

By

Popular Japanese adult websites have been compromised to distribute the Aibatook banking trojan, a threat that could make its way to the U.S.

Pushdo botnet gets DGA update, over 6,000 machines host new variant

Pushdo botnet gets DGA update, over 6,000 machines host new variant

By

In less than a day, over 6,000 infected machines were updated with the new Pushdo variant.

Google creates 'Project Zero' team to protect the internet

By

Google has hired a team of researchers who will be dedicated to digging up vulnerabilities, malware and other threats to internet users.

Fraudsters market new malware Kronos on underground

Fraudsters market new malware Kronos on underground

By

Trusteer warns that the financial malware was first advertised last week on a major underground forum.

Zberp evolves, spreads through phishing campaign

By

Zberp malware was developed from the source code of Zeus and financial malware Carberp.

A possible attempt to revive the Gameover Zeus botnet

By

The Gameover variant of the nefarious Zeus trojan was disrupted in early June, but researchers with Malcovery are observing a return.

After takedown efforts, Cryptolocker fate still "undetermined," firm says

By

BitDefender, the firm that discovered the ransomware, detailed Cryptolocker's chances of making a comeback.

China targets shipping firms in Zombie Zero attack

By

TrapX was alerted to the zero-day attack when the malware targeted servers with "finance" in their host names.

Sign up to our newsletters

POLL