Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
CISA has advised organizations using Pulse Secure VPN products to patch their installations as malicious actors continue to exploit a vulnerability fixed in April. [Read More]
Over the past year and a half, the North Korea-linked Lazarus group has continued attacks on cryptocurrency exchanges but modified its malware and some techniques. [Read More]
Interpol announces that it has coordinated an operation targeting cryptojacking in Southeast Asia. [Read More]
A cyber-espionage group supposedly linked to the Chinese government is targeting non-governmental organizations (NGOs) in South and East Asia. [Read More]
A malicious application in the Google Play store targeted a recently patched Android zero-day vulnerability. The app has been linked to a threat group known for targeting military entities. [Read More]
A vulnerability affecting a Pulse Secure enterprise VPN product has been exploited by cybercriminals to deliver ransomware, a researcher warns. [Read More]
Legion Loader is a new dropper that is distinctive by the wide range of malware it has been seen to drop, and is available for hire as part of the burgeoning malware-as-a-service black market. [Read More]
As if having their data encrypted wasn’t bad enough, businesses that fell victim to Maze ransomware now face another threat: their data could become public. [Read More]
A cyber-espionage group has targeted hundreds of industrial companies in South Korea and other countries using malware designed to steal passwords and documents. [Read More]
Sophisticated cybercrime groups have targeted North American gas stations with point-of-sale (PoS) malware, Visa warns. [Read More]
- 1 of 206
- ››
FEATURES, INSIGHTS // Malware
Intent-based segmentation, deception technology, and an integrated security fabric are essential tools in beating malware designed to avoid detection and analysis.
The origin story of Mimikatz — a post-exploitation module that has enabled criminals to steal millions of passwords around the world — reads like an over-the-top spy thriller.
The truth is that quite a lot of malware is developed by an organization—an actual office of people that show up and spend their working day writing malware for a paycheck.
When ransomware strikes, there aren’t many options for response and recovery. Essentially, you can choose your own adventure and hope for the best.
History shows that, in security, the next big thing isn’t always an entirely new thing. We have precedents—macro malware existed for decades before it really became a “thing.”
The FUD crypter service industry is giving a second life to a lot of old and kind-of-old malware, which can be pulled off the shelf by just about anybody with confused ethics and a Bitcoin account.
Cryptojacking malware grew from impacting 13% of all organizations in Q4 of 2017 to 28% of companies in Q1 of 2018, more than doubling its footprint.
A study found that over 98 percent of malware making it to the sandbox array uses at least one evasive tactic, and 32 percent of malware samples making it to this stage could be classified as “hyper-evasive".
The cost of electricity has led some to take shortcuts in the search for power sources - individuals and organizations are now being breached by cyber-criminals seeking to take advantage of corporate infrastructures.
Historical patterns and recent activity indicate that another major Necurs malware outbreak is looming just around the corner.
- 1 of 13
- ››
SecurityWeek Daily Briefing
- Questions Linger Over Investigation Into Jeff Bezos' Hacking
- Greece: Government Websites Hit by Cyberattack
- 2020 Rings in a New Era of Cyber Attacks - and it's Getting Personal
- Microsoft Releases Azure Security Benchmark
- Bipartisan Bill Aims to Reform NSA Surveillance of Americans
- Privacy Firm Finds Unsecured Cannabis Patient Information
- The More Authentication Methods, the Merrier
- UK 'to Decide on Huawei 5G Next Week'
- Citrix Releases More Patches for Exploited Flaw, Tool to Detect Compromise
- Researchers Earn $280,000 for Hacking Industrial Systems at Pwn2Own Miami
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy