Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Mozilla has patched a second Firefox zero-day vulnerability exploited by hackers to deliver Mac malware to cryptocurrency exchanges. [Read More]
The recently patched Firefox zero-day vulnerability (CVE-2019-11707) has been exploited to deliver Windows and Mac malware to cryptocurrency exchanges. [Read More]
A Florida city agreed to pay $600,000 in ransom to hackers who took over its computer system, the latest in thousands of attacks worldwide aimed at extorting money from governments and businesses. [Read More]
A recently uncovered cyberespionage campaign is targeting the users of Android devices in Middle Eastern countries. [Read More]
A new variant of the well-known Houdini Worm has been spotted in phishing attacks. [Read More]
A recently discovered backdoor can spread itself over a local network, in addition to allowing attackers to install additional malware onto compromised machines. [Read More]
A free decryption tool is now available for the victims of the latest variants of the GandCrab ransomware. [Read More]
Researchers have detected an Android trojan that abuses the web push technology. In its benign use, web push is used by legitimate websites -- such as news sites -- to send out new event notifications. [Read More]
The New York Times reports that the US has planted potentially destructive malware in Russia’s power grid, but President Trump says the story is not true and calls it a “virtual act of treason.” [Read More]
The French Ministry of Interior has released a free decryption tool for the PyLocky ransomware to help victims recover their data. [Read More]
- 1 of 189
- ››
FEATURES, INSIGHTS // Malware
The origin story of Mimikatz — a post-exploitation module that has enabled criminals to steal millions of passwords around the world — reads like an over-the-top spy thriller.
The truth is that quite a lot of malware is developed by an organization—an actual office of people that show up and spend their working day writing malware for a paycheck.
When ransomware strikes, there aren’t many options for response and recovery. Essentially, you can choose your own adventure and hope for the best.
History shows that, in security, the next big thing isn’t always an entirely new thing. We have precedents—macro malware existed for decades before it really became a “thing.”
The FUD crypter service industry is giving a second life to a lot of old and kind-of-old malware, which can be pulled off the shelf by just about anybody with confused ethics and a Bitcoin account.
Cryptojacking malware grew from impacting 13% of all organizations in Q4 of 2017 to 28% of companies in Q1 of 2018, more than doubling its footprint.
A study found that over 98 percent of malware making it to the sandbox array uses at least one evasive tactic, and 32 percent of malware samples making it to this stage could be classified as “hyper-evasive".
The cost of electricity has led some to take shortcuts in the search for power sources - individuals and organizations are now being breached by cyber-criminals seeking to take advantage of corporate infrastructures.
Historical patterns and recent activity indicate that another major Necurs malware outbreak is looming just around the corner.
It remains to be seen whether more legitimate web operations will embrace the approach, but you can count on illegitimate and malicious use of cryptomining to grow robustly.
- 1 of 13
- ››
SecurityWeek Daily Briefing
- AWS Announces General Availability of Security Hub
- Hackers Favoring Shimmers Over Skimmers for ATM Attacks
- Tales From the SOC: Healthcare Edition
- Telcos Pwned: Multi-Wave Attacks Stealing 'Obscene Amount of Data' From Providers
- ABB Patches Many Vulnerabilities in HMI Products
- LokiBot and NanoCore Malware Distributed in ISO Image Files
- Mission Possible: ICS Attacks On Buildings Are a Reality
- Flaws in Phoenix Contact Automationworx Allow Code Execution via Malicious Files
- VideoLAN Patches Critical Vulnerability in VLC Media Player
- Flaw in Outlook for Android Allows for Data Theft
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy