Coronavirus | SC Media

Coronavirus

Maze ransomware attackers extort vaccine testing facility

The cybercriminal gang behind Maze ransomware has been extorting a UK-based clinical research organization that’s been preparing to play a potential role in testing vaccine candidates for the novel coronavirus, despite assurances that they would not harm any health care organizations during the COVID-19 crisis. SC Media first reported an attack on the medical center,…

Pwn2Own contest yields 13 bugs, as virtual format expands talent pool

Research teams at the Pwn2Own 2020 competition successfully exploited 13 software vulnerabilities this past week, including bugs found in products from Adobe, Apple, Microsoft, Oracle and Ubuntu. Participants earned $270,000 over the two-day event — the first Pwn2Own ever to be held virtually, as a measure to combat the rapid spread of the novel coronavirus.…

Coronavirus news being used to sneak malware past AV programs

In an effort to make malware appear legitimate and help it sneak past security software, groups using two well-known trojans are inserting news text from Coronavirus stories into their file descriptions. Padding malware with fake news is not new but Bleeping Computer has found Trickbot and Emotet now being used in conjunction with stories associated…

Five tips for managing remote workers during a pandemic

Is your organization ready to securely support a wide range of remote workers in the wake of a global pandemic? With cases of coronavirus mounting in countries around the globe and the Centers for Disease Control (CDC) warning citizens to be prepared for the likelihood the illness will spread across other regions of the world,…

Some cybercriminals consider laying off health care targets amid COVID-19 crisis

Certain members of the cybercriminal community, including a few malware developers and operators, have reportedly expressed a willingness to avoid attacking health care companies and other organizations that are key to battling the COVID-19 pandemic. Meanwhile, two cyber firms have pledged to offer free services to health care organizations hit by ransomware. BleepingComputer this week…

VPNs: Not a cybersecurity slam dunk for telecommuters in the age of COVID-19

CISOs and cybersecurity teams around the world are watching their threat surface multiply as millions of staffers find themselves working from home for the first time in order to help constrain the spread of Coronavirus. The removal of these people from the safe and controlled working environment found in their offices and tossing them into…

Cybercriminals weaponize the World Health Organization name to lure phishing victims

The World Health Organization (WHO) is among the premiere sources of up to date and accurate information on COVID-19 so it is now surprise cybercriminals are leveraging this for their benefit. Malwarebytes has found a new phishing campaign using the well-respected WHO name as a lure to trick people who are rightfully fearful of Coronvavirus…

Spyware disguised as COVID-19 tracker app actually keeps track of users

Another malicious actor has weaponized an otherwise legitimate, interactive coronavirus tracking map created by Johns Hopkins University — this time to deliver Android spyware as part of a campaign that originates out of Libya and seemingly targets individuals within that country. The surveillanceware, known as SpyMax, comes packaged in a trojanized application named “corona live…

Next post in Coronavirus