Malware

Angler EK hijacks domain registrant credentials to create malicious pages

Angler EK hijacks domain registrant credentials to create malicious pages

By

The Angler Exploit kit has adopted a new technique for dropping its malware.

Connecticut AG asks Lenovo for details on Superfish incident

Connecticut AG asks Lenovo for details on Superfish incident

By

Attorney General George Jepsen sent a letter to Lenovo's EVP on Friday.

Infections caused by prevalent financial trojans dropped 53 percent last year

Infections caused by prevalent financial trojans dropped 53 percent last year

By

But the U.S. still remains the top country in detections, a Symantec report found.

Spammers leverage DMARC to more successfully distribute ransomware

Spammers leverage DMARC to more successfully distribute ransomware

By

Trend Micro researchers observed spammers leveraging DMARC in order to improve the chances of infecting users with TorrentLocker.

Natural Grocers investigating unauthorized access to POS systems

Natural Grocers investigating unauthorized access to POS systems

By

Financial sources told Brian Krebs that fraudulent activity had been detected that indicated the grocer's POS systems had been accessed.

Malware on the move: Mobile malware

Malware on the move: Mobile malware

By

Like virtually all online threats, malware is increasingly finding a ripe new territory on the mobile platform, reports Karen Epper Hoffman.

Researchers investigate link between Axiom spy group, Anthem breach

Researchers investigate link between Axiom spy group, Anthem breach

By

Anthem breach investigators initially claimed that tools, linked exclusively to Chinese espionage attackers, were used against the health insurer.

Fraudster mistakenly spreads Ramnit via Zeus toolkit

By

Initially, RSA thought the incident was a case of fraudsters sabotaging one another.

After Superfish-Lenovo incident, Facebook probes larger issue of SSL-sniffing adware

After Superfish-Lenovo incident, Facebook probes larger issue of SSL-sniffing adware

By

Facebook found over a dozen applications that use the same third-party SSL decryption library from Komodia that Superfish leverages.

Illinois police department pays ransom after Cryptoware infection

By

The Midlothian Police Department coughed up $500 ransom to an unknown hacker after one of its computers became infected by the ransomware.

Hackers still meddling in State Dept. network, three months in

By

The State Department continues to find signs that hackers are in its network after a breach that may have involved the Russian government.

BlackShades co-creator, Alex Yucel, pleads guilty

BlackShades co-creator, Alex Yucel, pleads guilty

By

The 24-year-old Swedish man behind the creation of the BlackShades RAT and organization has pleaded guilty to distributing malicious software.

Lenovo PCs shipped with 'Superfish,' adware that opens users to MitM attacks

Lenovo PCs shipped with 'Superfish,' adware that opens users to MitM attacks

By

After facing backlash, Lenovo removed the software from its computers.

Jamie Oliver website, RedTube distributes malware via malicious iFrames

Jamie Oliver website, RedTube distributes malware via malicious iFrames

By

Two very popular websites were compromised so that visitors would be infected with malware.

Malware operations targeting orgs in Israel, Egypt traced to Gaza

Malware operations targeting orgs in Israel, Egypt traced to Gaza

By

Both operations, though separate in their aims, were said to have ties to Gaza, Trend Micro found.

Analysts find link between POS malware and Carbanak gang

By

Trend Micro says attacks, where signed POS malware was used, are tied to the APT group Carbanak.

Carbanak APT campaign made off with $1B from banks globally

Carbanak APT campaign made off with $1B from banks globally

By

A cybercrime collected distributed the Carbanak malware via email to banking employees to infiltrate systems and snare over $1 billion, according to Kaspersky Lab.

Ransomware delivered via fake Chrome and Facebook emails, tied to PayPal phishing

Ransomware delivered via fake Chrome and Facebook emails, tied to PayPal phishing

By

Trend Micro researchers observed upgraded CTB-Locker ransomware being distributed via fake Google Chrome and Facebook emails.

Microsoft phishing emails target corporate users, deliver malware that evades sandboxes

Microsoft phishing emails target corporate users, deliver malware that evades sandboxes

By

Cisco researchers identified a campaign involving phishing emails that purport to come from the Microsoft Volume Licensing Service Center.

Alleged BlackShades creator backs out of plea deal

By

In letter filed on Feb. 6 by Alex Yucel's lawyer asks for a new trial day in May or June but did not mention the previously agreed upon plea deal.

U.S. IT security professionals face range of attacks from abroad, report finds

U.S. IT security professionals face range of attacks from abroad, report finds

By

CrowdStrike's Global Threat Intel Report details some of the attacks IT security professionals have seen in 2014 and can expect to see more of this year.

Simplocker Android ransomware variant identified, tougher to decrypt files

Simplocker Android ransomware variant identified, tougher to decrypt files

By

This latest variant of Simplocker generates a unique key for each device that it infects, making it more difficult to decrypt the files on each device.

Researchers analyze Bedep malware linked to Flash Player attacks

By

In various campaigns, attackers have exploited Flash bugs to spread the malware, Trend Micro found.

Report compares exploit skills of APT actors, other malware groups

Report compares exploit skills of APT actors, other malware groups

By

A technical paper challenges the misconception that APT groups are inevitable "masters of exploitation."

Firm warns of Google Play apps spreading adware

Firm warns of Google Play apps spreading adware

By

In some instances, it took 30 days for the newly-installed apps to display "abnormal" behavior.

Understanding web bots and how they hurt your organization

The internet is literally crawling with bots. Millions of them scour the farthest reaches of the internet every day, indexing content, testing connections, and making the web more useful overall.

Report: Target hackers steal card data from another parking company

By

Brian Krebs uncovered that a third parking service has been targeted by the same cybercriminals that hit Target and Home Depot.

More than 100K Facebook users infected by porn malware

By

More than 100,000 Facebook users have been infected with a new trojan that drops when a victim attempts to watch a porn video.

Hackers used social engineering to glean military intel on Syrian opposition

Hackers used social engineering to glean military intel on Syrian opposition

By

Attackers sent malware through Skype chats promising pictures, FireEye reveals.

News briefs: North Korea behind the Sony breach and a landmark HIPAA settlement

News briefs: North Korea behind the Sony breach and a landmark HIPAA settlement

By

President Obama imposed sanctions against North Korea, a medical services provider will be forced to pay a "neglect" penalty over HIPAA violations, the House passed the Intelligence Authorization Act, and other security news.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US