Malware News, Articles and Updates

Met Police officer buys malware that monitors messages, calls and more

A London police officer has purchased malware for mobile phones and computers that can intercept calls, emails and more.

UK's Alan Mudd sentenced to two years for creating Titanium Stresser DDoS malware

Alan Mudd was sentenced to two years in a young offender's institution by a UK court for creating, selling and using Distributed Denial of Service malware.

Asian Interpol operation finds nearly 9,000 CnC servers

Investigators from seven Southeast Asian nations collaborated on a joint Interpol operation that identified approximately 8,800 C2 servers in eight countries and nearly 270 compromised websites, including government portals.

Moker trojan returns, researchers get closer look

Researchers spotted a resurgence in use of the elusive Moker trojan and were able to take a closer look at its functions.

Binary Options malvertising scheme delivers Gozi-like banking trojan

A recently discovered malvertising campaign called Binary Options is redirecting Internet users to a fake trading company webpage, before infecting some of these victims with a banking trojan via the RIG exploit kit.

Cardinal RAT reigns under the radar two years

Palo Alto Networks researchers spotted a previously unknown remote access trojan (RAT) dubbed the Cardinal RAT which uses a unique technique involving malicious Excel macros.

SMSVova spyware downloaded millions of times from Google Play store since 2014

A spyware program disguised as an app that dispenses Android updates was downloaded between 1 and 5 million times before being pulled from Google's official U.S. Play Store, according to researchers at Zscaler.

When flashlights attack, Android passwords get stolen

Another malicious app has finagled its way into the Google play store in the disguise of a seemingly benevolent flashlight app.

Femme fatale: Karmen ransomware seduces novice cybercriminals with affordability, ease of use

A Russian-speaking cybercriminal was discovered last March selling a new ransomware program named Karmen on the dark web, although infections could date back as early as December 2016 in the U.S. and Germany.

Cylance denies providing fake malware samples

Security firm Cylance Tuesday disputed accusations that it used fake malware that only its Protect product could detect to gain more favorable results over competitors during testing.

Spike in jRAT attacks

Researchers at Zscaler reported on a spike in Java-based remote access trojan variants, or jRATs.

Hacker served Shoney's POS malware for three months

Best American Hospitality Corp. reported that 37 Shoney's restaurants it manages and operates were hit with point-of-sale (POS) malware starting in late December and lasting through early March.

SC Exclusive: Spyware disguises itself as IRS tax notification

IT security company Fortinet has pointed out one of the latest tax scams to befoul the Internet -- this one in the form of a spyware program disguised as an IRS tax return notification.

Attackers caught defacing sites with difficult to spot techniques

Sucuri researchers spotted a campaign of attacks defacing websites using an obfuscation technique that made detection difficult.

U.S. Postal Service-themed spam delivers three banking trojans

Malwarebytes researchers spotted an uptick in United States Postal Service (USPS) themed malspam delivering one of three banking trojans.

SWIFT codes targeted in Union Bank of India cyberattack

Hackers launched an attack against Union Bank of India that was very similar to the attack Bangladesh bank heist that resulted in the theft of $81 million.

Kelihos botnet crumbling following arrest, DoJ

Following the arrest in Spain of a Russian suspected of being a notorious spam king, U.S. authorities have begun unraveling the operation he's alleged to have controlled, the Kelihos botnet.

WikiLeaks: CIA used 'Grasshopper' framework to infect Windows users

The agency can use custom installers tailored to the version of Windows and antivirus software a user is running.

Mac malware spikes 744 percent, still not a big deal

Mac malware increased by a whopping 744 percent in 2016 but it's still not as big of a threat as Windows or even Android malware

BrickerBot malware attacks and destroys unsecure IoT devices

The security firm Radware has come across two new forms of Denial of Service (DOS) malware that is attacking and bricking Internet of Things devices for as yet unknown reasons.

Chrysaor spyware's live audio recording capability called sophisticated and elaborate

The recently uncovered Chrysaor spyware tool has an amazingly complex and stealthy way to record audio that is able to fly under the user's radar.

Large Teaching Hospitals more prone to breaches

Large teaching hospitals, or hospitals affiliated with medical schools, are more prone to data breaches according to a recent report.

French teenage bot author offered 'job' in U.S.

The French teenage author of a banking trojan received a job offer from the U.S., but his father suspects it's a trap.

Wordpress hard pressed by malicious javascript and trojans

Researchers spotted a backdoor trojan that uses torrents as a delivery medium and uses distributed brute force attacks.