Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Russian national Peter Yuryevich Levashov pleads guilty in US court to computer crime, fraud, conspiracy and identity theft charges related to the development and use of the Kelihos botnet [Read More]
The Russia-based Cobalt hacking group is using the multi-stage CobInt malware in attacks delivered via malicious Office documents built using the ThreadKit exploit builder. [Read More]
A ransomware family used in attacks in July and August pose as the infamous Locky ransomware that was highly active in 2016, Trend Micro researchers have discovered. [Read More]
Some of the USB flash drives shipped by Schneider Electric with its Conext Combox and Conext Battery Monitor solar energy products found to contain malware [Read More]
Windows zero-day vulnerability exploited by a group dubbed 'PowerPool' in targeted attacks. Flaw leveraged to elevate privileges of second-stage malware [Read More]
A new rootkit that has been distributed via the RIG exploit kit over the past few weeks can manipulate web browsers and also contains sophisticated defense mechanisms, Check Point says. [Read More]
Researchers discover AdvisorsBot, a previously undocumented downloader used in attacks targeting hotels, restaurants and telecom companies [Read More]
North Korea-linked Lazarus group used macOS malware in recent attack against a cryptocurrency exchange [Read More]
Researchers analyze a new backdoor used by the Russian-speaking APT group known as Turla [Read More]
A newly discovered Mirai variant has been created using an open-source project that makes the process of cross compilation very easy [Read More]
- 1 of 168
- ››
FEATURES, INSIGHTS // Malware
When ransomware strikes, there aren’t many options for response and recovery. Essentially, you can choose your own adventure and hope for the best.
History shows that, in security, the next big thing isn’t always an entirely new thing. We have precedents—macro malware existed for decades before it really became a “thing.”
The FUD crypter service industry is giving a second life to a lot of old and kind-of-old malware, which can be pulled off the shelf by just about anybody with confused ethics and a Bitcoin account.
Cryptojacking malware grew from impacting 13% of all organizations in Q4 of 2017 to 28% of companies in Q1 of 2018, more than doubling its footprint.
A study found that over 98 percent of malware making it to the sandbox array uses at least one evasive tactic, and 32 percent of malware samples making it to this stage could be classified as “hyper-evasive".
The cost of electricity has led some to take shortcuts in the search for power sources - individuals and organizations are now being breached by cyber-criminals seeking to take advantage of corporate infrastructures.
Historical patterns and recent activity indicate that another major Necurs malware outbreak is looming just around the corner.
It remains to be seen whether more legitimate web operations will embrace the approach, but you can count on illegitimate and malicious use of cryptomining to grow robustly.
Take a step back and realize that cryptocurrency mining is really just another form of malware, which is something you should be good at finding already.
There are several mitigation measures and best practices that you can adopt to improve your organization’s security posture and reduce the risk of supply chain infections.
- 1 of 13
- ››
SecurityWeek Daily Briefing
- New Tool Helps G Suite Admins Uncover Security Threats
- Cloudflare Helps Boost DNSSEC Adoption as Key Rollover Nears
- Privacy Protection Means Encryption at the Application Layer
- Nation State Cyber Attacks on Rise, Says Europol
- Mirai Authors Avoid Prison After Working With FBI
- Fidelis Cybersecurity Raises $25 Million
- Destructive Xbash Linux Malware Targets Enterprise Intranets
- Critical Vulnerability Impacts Hundreds of Thousands of IoT Cameras
- iOS 12 Brings Patches for 16 Security Vulnerabilities
- Swiss, Russian FMs to Meet Next Week on Spy Row
Copyright © 2018 Wired Business Media. All Rights Reserved. Privacy Policy