Category: Malware

Malware, Phishing

Bad security hygiene still a major risk for enterprise IT networks

April 16, 2019

Via: Help Net Security

Unpatched vulnerabilities, along with growing network and application complexity pose an ongoing security risk which could threaten the security of enterprise IT networks. Analyzing the biggest security findings over the past year, Keysight has released the third annual security report […]

Malware, Mobile security, Vulnerabilities

ASUS Patches Live Update Bug That Allowed APT to Infect Thousands of PCs

March 27, 2019

Via: Threat Post

ASUS has expedited a patch for a major bug impacting thousands of PCs that allowed an advanced persistent threat group to launch a supply-chain attack dubbed “Operation ShadowHammer.” The vulnerability targeted a range of new ASUS PCs with a backdoor […]

Cloud security, Malware

Cryptojacking of businesses’ cloud resources still going strong

March 18, 2019

Via: Help Net Security

In the past year or so, many cybercriminals have turned to cryptojacking as an easier and more low-key approach for “earning” money. While the value of cryptocurrencies like Bitcoin and Monero has been declining for a while now and Coinhive, […]

Cyber-crime, Malware, Threats & Malware, Virus & Malware, Vulnerabilities

Recently fixed WinRAR bug actively exploited in the wild

March 15, 2019

Via: Security Affairs

Several threat actors are actively exploiting a critical remote code execution vulnerability recently addressed in WinRAR. The exploitation of the flaw in the wild is worrisome because the WinRAR software doesn’t have an auto-update feature, leaving millions of users potentially […]

Cyber-crime, Malware, Threats & Malware, Virus & Malware

STOP ransomware encrypts files and steals victim’s data

March 11, 2019

Via: Security Affairs

The STOP ransomware made the headlines because it is installing password-stealing Trojans on the victims’ machines. Experts observed the ransomware also installing the dreaded Azorult password-stealing Trojan on victim’s machine to steal account credentials, cryptocurrency wallets, documents and more. AZORult […]

Malware, Virus & Malware

Slack, GitHub Abused by New SLUB Backdoor in Targeted Attacks

March 8, 2019

Via: Security Week

Researchers from Trend Micro have come across a new piece of malware that abuses GitHub and Slack for command and control (C&C) communications. The malware is a backdoor that the security firm tracks as SLUB (Backdoor.Win32.SLUB.A). The company’s researchers believe […]

Malware, Threats & Malware, Virus & Malware

RSA Conference 2019: Data-Wiping Cyberattacks Plague Financial Firms

March 6, 2019

Via: Threat Post

Over a quarter of surveyed financial institutions reported that they were targeted by destructive cyberattacks over the past year, bent on completely destroying data. That’s according to a new Carbon Black report unveiled at RSA this year. The report, “Modern […]

Malware, Phishing

Enterprises are blind to over half of malware sent to their employees

March 1, 2019

Via: Help Net Security

As the use of SSL grows to the point where it’s the standard protocol, cybercriminals are increasingly using encryption to conceal and launch attacks. This has become possible because SSL certificates, which used to be difficult to obtain, are now […]

Malware, Phishing

Phishing Scam Cloaks Malware With Fake Google reCAPTCHA

February 25, 2019

Via: Threat Post

A recently-discovered phishing scam was found peddling malware, using a new technique to mask its malicious landing page: A fake Google reCAPTCHA system. The campaign targeted a Polish bank and its users with emails, said researchers with Sucuri. These emails […]

Email security, Malware, Phishing

Accidental data breaches are often compounded by a failure to encrypt

February 25, 2019

Via: Help Net Security

83 percent of security professionals believe that employees have accidentally exposed customer or business sensitive data at their organization. Accidental data breaches are often compounded by an organizational failure to encrypt data prior to it being shared – both internally […]