Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
A Russia-linked threat group tracked as DustSquad and Nomadic Octopus has been targeting diplomatic entities in Central Asia [Read More]
Federal and state officials are working with Onslow Water and Sewer Authority after hackers attacked some of its computer systems. [Read More]
Cybersecurity agencies in the US, UK, Canada, Australia and New Zealand release joint report on publicly available hacking tools [Read More]
Hackers exploit the Drupal vulnerability known as Drupalgeddon2 to install a backdoor on compromised servers [Read More]
A new piece of malware named Exaramel provides evidence that the Industroyer/Crashoverride malware used in the 2016 Ukraine power outage is linked to NotPetya [Read More]
The MuddyWater cyber-espionage campaign was observed using spear-phishing emails to target entities in more countries [Read More]
A group of hackers believed to be operating out of China was observed using popular Microsoft Office exploits for the delivery of malware [Read More]
The APT group tracked as FruityArmor has been using a Windows zero-day vulnerability in highly targeted attacks aimed at entities in the Middle East [Read More]
Betabot malware attempts to hide its presence by using all the tricks available, including anti-debugging, anti-virtual machine/sandbox, anti-disassembly and the ability to detect security products and analysis tools. [Read More]
A recently observed variant of the KONNI malware appears tied to a remote access Trojan (RAT) previously attributed to a North Korean actor, Palo Alto Networks security researchers reveal. [Read More]
- 1 of 171
- ››
FEATURES, INSIGHTS // Malware
The truth is that quite a lot of malware is developed by an organization—an actual office of people that show up and spend their working day writing malware for a paycheck.
When ransomware strikes, there aren’t many options for response and recovery. Essentially, you can choose your own adventure and hope for the best.
History shows that, in security, the next big thing isn’t always an entirely new thing. We have precedents—macro malware existed for decades before it really became a “thing.”
The FUD crypter service industry is giving a second life to a lot of old and kind-of-old malware, which can be pulled off the shelf by just about anybody with confused ethics and a Bitcoin account.
Cryptojacking malware grew from impacting 13% of all organizations in Q4 of 2017 to 28% of companies in Q1 of 2018, more than doubling its footprint.
A study found that over 98 percent of malware making it to the sandbox array uses at least one evasive tactic, and 32 percent of malware samples making it to this stage could be classified as “hyper-evasive".
The cost of electricity has led some to take shortcuts in the search for power sources - individuals and organizations are now being breached by cyber-criminals seeking to take advantage of corporate infrastructures.
Historical patterns and recent activity indicate that another major Necurs malware outbreak is looming just around the corner.
It remains to be seen whether more legitimate web operations will embrace the approach, but you can count on illegitimate and malicious use of cryptomining to grow robustly.
Take a step back and realize that cryptocurrency mining is really just another form of malware, which is something you should be good at finding already.
- 1 of 13
- ››
SecurityWeek Daily Briefing
- Japan Orders Facebook to Improve Data Protection
- Cisco, F5 Networks Investigate libssh Vulnerability Impact
- Flaw in Media Library Impacts VLC, Other Software
- Hackers Deface Website of Saudi Investment Forum
- Securing the Vote Against Increasing Threats
- Recent Branch.io Patch Creates New XSS Flaw
- Cyberbit Launches Portable ICS Security Assessment Solution
- Google Boosts Android Security with Protected Confirmation
- Hackers Breach HealthCare.gov System, Get Data on 75,000
- NSA-Linked 'DarkPulsar' Exploit Tool Detailed
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy