Malware News, Articles and Updates

Researchers ID 'Infy,' Iranian malware family under the radar for a decade

Researchers ID 'Infy,' Iranian malware family under the radar for a decade

By

Palo Alto researchers spotted an Iranian malware family, dubbed Infy, used in targeted attacks for nearly a decade under the radar.

Localized "designer" malware campaigns all the rage, says Sophos

Localized "designer" malware campaigns all the rage, says Sophos

By

Criminal outfits are increasingly distributing "designer" spam and malware, customized to optimally target victims in specific geographic regions, according to new research from Sophos' research division, SophosLabs.

Gozi malware creator cuts deal, gets time served and $7M fine

Gozi malware creator cuts deal, gets time served and $7M fine

By

Gozi banking malware creator Nikita Kuzmin sentenced to time served and a $7 million fine as the U.S. Attorney's office tells judge Kuzmin provided "substantial assistance" to the government.

Action Fraud warns of new wave of Lizard Squad DDoS attacks

Action Fraud warns of new wave of Lizard Squad DDoS attacks

Lizard Squad is back with a vengeance, according to an advisory from Action Fraud UK which is advising organisations to report the attacks, keep detailed records and seek help from their ISPs.

Mobile devices still vulnerable to attack, report

Mobile devices still vulnerable to attack, report

By

Mobile attacks can workaround two-factor authentication on Android phones and inject malware onto iOS phones.

First Choice Credit Union files class-action suit against Wendy's over breach

First Choice Credit Union files class-action suit against Wendy's over breach

By

Claiming that Wendy's didn't properly protect data, First Choice Credit Union filed a class action lawsuit against the retailer over a breach experienced last year.

Researchers spot mobile malware competition on the black market

Researchers spot mobile malware competition on the black market

By

IBM security researchers have spotted an uptick in mobile malware competition in pricing, features and quality on the black market.

CryptXXX ransomware being served by toy company site

CryptXXX ransomware being served by toy company site

By

The day after security researchers discovered the website for toy maker Maisto was not only selling radio-controlled cars and planes, but was also pushing CryptXXX ransomware, the site was down for maintenance.

Prognosis Negative for American Dental Association

Prognosis Negative for American Dental Association

By

Malware embedded on a USB drive was delivered to members of the American Dental Association (ADA).

Marcher banking malware hitting Australia

Marcher banking malware hitting Australia

By

Marcher Madness continues with a new, stealthier iteration of the Marcher banking malware targeting Android users in Australia.

'Wizz' kids: Talos researchers pinpoint French firm as source of spyware-adware threat

'Wizz' kids: Talos researchers pinpoint French firm as source of spyware-adware threat

By

A supposedly legitimate French software firm, Tuto4PC, has actually infected an estimated 12 million PC users with a generic Trojan disguised as downloadable utilities programs, according to an analysis from Cisco's Talos research division.

Attackers exploit MS Windows 'God Mode' for evil ends

Attackers exploit MS Windows 'God Mode' for evil ends

It appears that the developer mode of MS Windows, otherwise known as 'God Mode', is being leveraged by attackers to hide malware.

Estonian man sentenced to 87 months for perpetrating click-fraud scheme

Estonian man sentenced to 87 months for perpetrating click-fraud scheme

By

A Manhattan federal court judge sentenced Estonian Vladimir Tsastsin to 87 months in prison for his role in perpetrating an internet fraud scheme that infected more than four million computers in more than 100 countries.

New site on dark web offering one-stop ransom services

New site on dark web offering one-stop ransom services

By

A new site was discovered on the dark web that allows hackers to upload stolen data and sell the data to criminals or criminal groups.

Malware in nuclear power plant prompts plant shutdown

Malware in nuclear power plant prompts plant shutdown

By

Malware discovered at a nuclear power plant in Germany prompted RWE AG to shut down the power plant as a precaution.

73% of global brands and organisations hit with DDoS attack in 2015

73% of global brands and organisations hit with DDoS attack in 2015

With the bombardment of DDoS attacks fairly consistent worldwide throughout 2015, it's no longer a matter of if or when attacks might happen, but how often and how long the attack will last.

Locky ransomware spotted using Javascript downloader

Locky ransomware spotted using Javascript downloader

By

FireEye researchers observed a Locky ransomware campaign that used Javascript downloaders to infect users rather than macro- or binary-based downloaders.

New ransomware demands payment in iTunes, targets older Android software

New ransomware demands payment in iTunes, targets older Android software

By

A new malware type has been spotted that utilizes a couple of original moves not seen yet by researchers; it is self installing and the cybercriminals require that the ransom be paid in iTunes gift cards.

Report: Ransomware feeds off poor endpoint security

Report: Ransomware feeds off poor endpoint security

By

Poor endpoint security practices are propelling the great ransomware epidemic of 2016 — and if allowed to fester, the threat will spread to new endpoints including IoT devices, cars and ICS and SCADA systems, a new report said.

Bangladesh banking hack due to SWIFT vulnerability

Bangladesh banking hack due to SWIFT vulnerability

By

A report from the Society for Worldwide Interbank Financial Telecommunication (SWIFT) indicates the group was aware that malware was targeting its system when $81 million was stolen from a Bangladesh bank in March.

Hong Kong democracy activists targeted by Poison Ivy variant

Hong Kong democracy activists targeted by Poison Ivy variant

Pro-democracy activists in Hong Kong are being targeted by a new variant of Poison Ivy, a malware package that previously hadn't seen an update in six or seven years.

SpyEye authors headed to prison

SpyEye authors headed to prison

By

The two men responsible for the SpyEye banking trojan, used to steal user information from financial institutions, were sentenced to a combined 24-1/2 years in prison.

FIN6 uses legit payment card data, GRABNEW-infected systems to steal info

FIN6 uses legit payment card data, GRABNEW-infected systems to steal info

By

A new report from FireEye Threat Intelligence said that one case investigated by Mandiant indicated that a victim computer "was originally compromised with GRABNEW malware by a separate threat actor."

New technique hides RATs in memory, never touching disk during its execution

New technique hides RATs in memory, never touching disk during its execution

By

Researchers have discovered a new trick for concealing the installation of RATs, after identifying malware samples that never touch the hard drive throughout execution, remaining in memory until the malware is fully enabled.

New version of TeslaCrypt ups ante for ransomware

New version of TeslaCrypt ups ante for ransomware

By

Two updates in TeslaCrypt illustrate that ransomware is not only spreading wider, but is also evolving with new capabilities.

Cybercrime as a business rampant, new study

Cybercrime as a business rampant, new study

By

Attacks are getting fiercer and attackers more sophisticated and organized, according to the "2016 Trustwave Global Security Report," released this week.

 APT spies used malware made for jealous spouses

APT spies used malware made for jealous spouses

Trend Micro has dissected malware used in the Operation C-Major attack officers of the Indian army and tracked it back to malware that originated from Pakistan.

Nuclear EK targeting users in10K cities worldwide, hides behind porn

Nuclear EK targeting users in10K cities worldwide, hides behind porn

By

Cisco Talos researchers took a deep dive in the Nuclear EK and found that it was well organized and successful.

Mac researcher tries detecting ransomware generically by spotting behavior patterns

Mac researcher tries detecting ransomware generically by spotting behavior patterns

By

Less than two months after cybersecurity experts identified KeRanger as the first fully functioning ransomware targeting OS X, an enterprising researcher has chronicled his own attempt at creating a behavior-based ransomware detection tool for Macs.

'Multigrain' variant of POS malware crops up; uses DNS tunneling to steal data

'Multigrain' variant of POS malware crops up; uses DNS tunneling to steal data

By

A variant of the POS malware family known as NewPosThings, called Multigrain, has introduced a twist into its repertoire—exfiltrating stolen payment card data from POS systems via the Domain Name System (DNS).

RECENT COMMENTS

Sign up to our newsletters

FOLLOW US