2010, Accountability, Antivirus and Malware

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

JUNE 21, 2023

If you operate a cybercrime business that relies on disseminating malicious software, you probably also spend a good deal of time trying to disguise or “crypt” your malware so that it appears benign to antivirus and security products. This story explores the history and identity behind Cryptor[.]biz WHO RUNS CRYPTOR[.]BIZ?

Malware

Malware Antivirus Cybercrime Hacking

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

This post is a deep dive on “ Megatraffer ,” a veteran Russian hacker who has practically cornered the underground market for malware focused code-signing certificates since 2015. “Antivirus software trusts signed programs more. user account — this one on Verified[.]ru account on Carder[.]su

Malware

Malware Cybercrime Software Antivirus

Spam Kingpin Peter Levashov Gets Time Served

Krebs on Security

JULY 20, 2021

A federal judge in Connecticut today handed down a sentence of time served to spam kingpin Peter “Severa” Levashov , a prolific purveyor of malicious and junk email, and the creator of malware strains that infected millions of Microsoft computers globally.

Antivirus

Antivirus Cybercrime Identity Theft Scams

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

Breach Exposes Users of Microleaves Proxy Service

Krebs on Security

JULY 28, 2022

The service, which accepts PayPal, Bitcoin and all major credit cards, is aimed primarily at enterprises engaged in repetitive, automated activity that often results in an IP address being temporarily blocked — such as data scraping, or mass-creating new accounts at some service online. Which hints at a possible BOTNET.

Advertising

Advertising Software Computers and Electronics Internet

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

” What follows is a deep dive into the identity of that Chinese vendor, which appears to have a long and storied history of pushing the envelope on mobile malware. com — were implicated in propagating the Triada malware. net 2010-11-22 ALIBABA CLOUD COMPUTING (BEIJING) CO., “Yehuo” ( ? ? ) com , buydudu[.]com

Mobile

Mobile Technology Manufacturing Malware

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

” What follows is a deep dive into the identity of that Chinese vendor, which appears to have a long and storied history of pushing the envelope on mobile malware. com — were implicated in propagating the Triada malware. net 2010-11-22 ALIBABA CLOUD COMPUTING (BEIJING) CO., “Yehuo” ( ? ? ) com , buydudu[.]com

Mobile

Mobile Technology Manufacturing Software

Ten Years Later, New Clues in the Target Breach

Krebs on Security

DECEMBER 14, 2023

The malware used in the Target breach included the text string “ Rescator ,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. For starters, the text string “Rescator” was found in some of the malware used in the Target breach.

Cybercrime

Cybercrime Accountability Advertising Computers and Electronics

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

At the start of March 2021, Microsoft rushed out patches for a critical zero-day Vulnerability in Exchange Server (2010, 2013, 2016, and 2019). FBI Internet Crime Report 2020: Cybercrime Skyrocketed, with Email Compromise Accounting for 43% of Losses. Microsoft Antivirus Now Automatically Mitigates Exchange Server Vulnerability.

Energy and Utilities

Energy and Utilities Ransomware Banking Hacking

Who’s Behind the GandCrab Ransomware?

Krebs on Security

JULY 8, 2019

But GandCrab far eclipsed the success of competing ransomware affiliate programs largely because its authors worked assiduously to update the malware so that it could evade antivirus and other security defenses. It remains unclear how many individuals were active in the core GandCrab malware development team. of GandCrab.

Ransomware

Ransomware Accountability Cybercrime Passwords

Mystic Stealer

Security Boulevard

JUNE 15, 2023

Stealers" are a kind of malware designed to run on an endpoint post-compromise, while their primary features center on the theft of user data. Together with our colleagues at InQuest, we present a deep dive technical analysis of the malware. This is the story of information stealers today.

Cryptocurrency

Cryptocurrency Password Management Malware DNS

6 Dangerous Microsoft Office 365 Security Concerns for Business

Spinone

OCTOBER 16, 2019

Imagine for a moment that your employee uses one password to access their social media profiles and to sign in to their Office 365 corporate account. How to secure your data from malware: One of the best practices for Office 365 security monitoring is to get the latest security updates. Keep your antivirus software up to date.

Passwords

Passwords Data breaches Backups Authentication

The History of Computer Viruses & Malware

eSecurity Planet

NOVEMBER 2, 2022

If you’ve used a computer for more than 5 minutes, you probably know a thing or two about computer viruses and malware. On the modern Internet, malware is a near-constant presence. Though often conflated with one another, malware and computer viruses aren’t necessarily the same thing. Looking to Protect Yourself Against Malware?

Malware

Malware Ransomware Antivirus Internet

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

Krebs on Security

FEBRUARY 26, 2019

In 2013, Vrublevsky was convicted of hiring his most-trusted spammer and malware writer to launch a crippling distributed denial-of-service (DDoS) attack against one of his company’s chief competitors. law enforcement and intelligence agencies.

Cybersecurity

Cybersecurity Cybercrime Media Antivirus

New Cyberthreats for 2021

Adam Levin

DECEMBER 7, 2020

In April 2020, Google reported 18 million instances per day of malware and phishing email sent via its Gmail service using Covid-related topics as a lure. The number of products connected to the internet surpassed the number of people on the planet somewhere between 2008 and 2010 and is expected to exceed 75 billion by 2025.

IoT

IoT Artificial Intelligence Technology Scams

Weathering Russian Winter: The Current State of Russian APTs

Security Boulevard

APRIL 8, 2022

Though APTs were regularly seen from then on inside the industry, the term didn’t gain public consciousness until an attack on Google servers in 2010 , the fault of which was assigned to Chinese APTs. Antivirus companies like McAfee jumped on the opportunity to provide anti-APT products. What Is An APT?

Social Engineering

Social Engineering Backups Malware Ransomware

Cyber Security Informer

Why Malware Crypting Services Deserve More Scrutiny

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Trending Sources

Spam Kingpin Peter Levashov Gets Time Served

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Breach Exposes Users of Microleaves Proxy Service

Tracing the Supply Chain Attack on Android

Tracing the Supply Chain Attack on Android

Ten Years Later, New Clues in the Target Breach

Cyber Security Roundup for April 2021

Who’s Behind the GandCrab Ransomware?

Mystic Stealer

6 Dangerous Microsoft Office 365 Security Concerns for Business

The History of Computer Viruses & Malware

Top Database Security Solutions for 2021

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

New Cyberthreats for 2021

Weathering Russian Winter: The Current State of Russian APTs

Stay Connected