Finance | SC Media

Finance

WannaLocker ransomware found combined with RAT and banking trojan

Researchers are warning that a new version of WannaLocker – essentially a mobile derivative of WannaCry ransomware – has been enhanced with spyware, remote access trojan and banking trojan capabilities. Cybercriminals have been using the all-in-one malware package in a campaign targeting Brazilian banks and their Android mobile customers, according to a July 1 blog…

facebook

Facebook unveils Libra cryptocurrency

Facebook announced its own cryptocurrency Libra that will be backed and controlled by the Libra Association which also includes founding members Uber, Lyft and Spotify. The platform will allow users to buy and send money without racking up as many fees as traditional financial platforms. Users can buy or cash out the cryptocurrency at local…

Venture capital investments

June 10, 2019 Vectra closed a $100 million round of funding led by TCV and existing investors. Vectra said it will use the investment to accelerate global market expansion and R&D innovation. November 29, 2018Venafi closed a $100 million round of financing that was led by TCV along with investment from QuestMark Partners and NextEquity…

ScarCruft ATP campaign leverages ‘rare’ data-harvesting tool for Bluetooth devices

A recent malware campaign targeting investment companies and diplomatic agencies has shed light on some of the newest practices and tools of reputed North Korean APT group ScarCruft. While investigating this campaign, researchers from Kaspersky Lab observed a tool for harvesting Bluetooth device data and were able to analyze the group’s multistage binary infection procedure.…

Report: G7 institutions to simulate cyberattack on financial sector

Twenty-four financial organizations from countries comprising the Group of Seven (G7) nations will reportedly simulate a major cross-border cyberattack on the financial sector next month. The exercise will present a scenario in which malware infects a technical component that is commonly used in the financial sector, according to a Reuters report citing Nathalie Aufauvre, director…

ghostlyskullmobilemalware_826540

Retefe Revisited: Banking trojan reemerges, adopts new set of tools

Researchers have noticed a recent upswing in attacks against banks featuring the Retefe banking trojan, following what was apparently a fairly quiet 2018 for the malware. The trojan is historically known for targeting the banking industry in countries like Austria, Sweden, Switzerland and the UK. Rather than using malicious web injects to execute man-in-the-browser attacks…

Malvertising scheme abuses Yandex.Direct, targets Russian accountants with assorted malware

Cybercriminals are abusing the Yandex.Direct online advertising service in order to serve up malicious ads that target Russian accountants with the goal of infecting them with banking trojans and ransomware. Researchers from ESET have so far linked six malware programs to this campaign, which began in October and continues to this day. During periods of…

Grab-and-go Baldr stealer malware proves popular among thieves

A new stealer malware dubbed Baldr has been taking the cybercrime market by storm with its capabilities including user profiling, sensitive data exfiltration, shotgun file grabbing, screencapping, and  network exfiltration. Malwarebytes researchers have been monitoring the malware for the past few months and said it is the work of three threat actors: Agressor handled distribution,…

Upgraded Cardinal RAT malware targets Israeli fintech firms

A pair of Israeli financial technology companies were recently the target of a malware campaign featuring an updated version of the rarely seen Cardinal remote access trojan, researchers from Palo Alto Networks’ Unit 42 team are reporting. And in a possibly related incident, one of the two unnamed companies was similarly attacked with EVILNUM, a…

Next post in Security News