Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The newly identified "Lord" exploit kit is targeting vulnerable versions of Adobe's Flash Player, Malwarebytes security researchers say. [Read More]
Pakistani national Muhammad Fahd has been charged in the US for bribing AT&T employees to help him unlock phones and plant malware on the telecoms giant’s network. [Read More]
The threat actor behind the cyberespionage campaign dubbed Machete continues to be active and some of its most recent attacks targeted the military in Venezuela and Ecuador. [Read More]
A variant of the Mirai Internet of Things (IoT) malware is using a command and control (C&C) server on the Tor network, Trend Micro’s security researchers have discovered. [Read More]
The first half of 2019 was dominated by an increase in malware using encryption, and in malware targeting Internet of Things (IoT) devices, a recent threat report reveals. [Read More]
The power company in the South African city of Johannesburg has suffered serious disruptions after its systems became infected with a piece of ransomware. [Read More]
The WatchBog cryptocurrency-mining botnet has recently added a scanner for the BlueKeep RDP protocol vulnerability, security researchers say. [Read More]
Guildma is complex and stealthy malware that originates in Brazil is a combination of RAT, spyware, password stealer and banking malware. [Read More]
Officials of an Indiana county say they are trying to determine the extent of a malware attack on the county’s computers. [Read More]
Recently disclosed vulnerabilities affecting some WordPress plugins have been exploited by cybercriminals in a malvertising campaign. [Read More]
- 1 of 193
- ››
FEATURES, INSIGHTS // Malware
The origin story of Mimikatz — a post-exploitation module that has enabled criminals to steal millions of passwords around the world — reads like an over-the-top spy thriller.
The truth is that quite a lot of malware is developed by an organization—an actual office of people that show up and spend their working day writing malware for a paycheck.
When ransomware strikes, there aren’t many options for response and recovery. Essentially, you can choose your own adventure and hope for the best.
History shows that, in security, the next big thing isn’t always an entirely new thing. We have precedents—macro malware existed for decades before it really became a “thing.”
The FUD crypter service industry is giving a second life to a lot of old and kind-of-old malware, which can be pulled off the shelf by just about anybody with confused ethics and a Bitcoin account.
Cryptojacking malware grew from impacting 13% of all organizations in Q4 of 2017 to 28% of companies in Q1 of 2018, more than doubling its footprint.
A study found that over 98 percent of malware making it to the sandbox array uses at least one evasive tactic, and 32 percent of malware samples making it to this stage could be classified as “hyper-evasive".
The cost of electricity has led some to take shortcuts in the search for power sources - individuals and organizations are now being breached by cyber-criminals seeking to take advantage of corporate infrastructures.
Historical patterns and recent activity indicate that another major Necurs malware outbreak is looming just around the corner.
It remains to be seen whether more legitimate web operations will embrace the approach, but you can count on illegitimate and malicious use of cryptomining to grow robustly.
- 1 of 13
- ››
SecurityWeek Daily Briefing
- Iowa Grocery Chain Investigating Possible Hack of Payment Processing Systems
- Apple Sues Corellium Over Security Research Tool
- Uganda Slams Report Huawei Helped Spy on Opposition Leader
- Many Users Don't Change Unsafe Passwords After Being Warned: Google
- Sherlock in the SOC: Leveraging Security Knowledge in a Behavior-Based Approach
- Cybersecurity Has Become a Political Issue for Americans, Survey Shows
- Many Apache Struts Security Advisories Updated Following Review
- ECB Uncovers Data Breach in Bank Newsletter
- Vulnerability Patched in Firefox Password Manager
- Intel Patches High-Severity Flaws in Tools, NUC Firmware
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy