2017, Antivirus, Blog and Technology - Cyber Security Informer

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

Security Affairs

FEBRUARY 16, 2021

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware. Javali trojan is active since November 2017 and targets users of financial and banking organizations geolocated in Brazil and Mexico. Background of Latin American Trojans.

Antivirus

Antivirus Malware Banking Internet

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

com via Domaintools.com shows the domain was assigned in 2015 to a company called “ Shanghai Blazefire Network Technology Co. In July 2017, Russian antivirus vendor Dr.Web published research showing that Triada had been installed by default on at least four low-cost Android models. Research on blazefire[.]com 2333youxi[.]com

Mobile

Mobile Technology Manufacturing Malware

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. Krebs wrote for The Washington Post between 1995 and 2009 before launching his current blog KrebsOnSecurity.com. Brian Krebs | @briankrebs. Bruce Schneier | @schneierblog.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

The Persistence of Abusive Certificates in Malware

Security Boulevard

SEPTEMBER 8, 2022

Trusted applications will not be stopped by antivirus or anti-malware technologies. Bypassing these technologies can save a cybercriminal organization considerable development time and money. Antivirus software can require high processing power, due to the in-depth nature of scanning. Related Blogs. Explore now.

Malware

Malware Antivirus Encryption Software

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

com via Domaintools.com shows the domain was assigned in 2015 to a company called “ Shanghai Blazefire Network Technology Co. In July 2017, Russian antivirus vendor Dr.Web published research showing that Triada had been installed by default on at least four low-cost Android models. Research on blazefire[.]com 2333youxi[.]com

Mobile

Mobile Technology Manufacturing Software

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

The Last Watchdog

FEBRUARY 28, 2021

WannaCry 2017 is well-known for the stir and panic it caused in May 2017 by affecting thousands of NHS hospitals, delaying critical medical procedures, and rerouting ambulances. Computer viruses often utilize deception techniques and keep evolving to evade antivirus software. NotPetya shook the entire world in June 2017.

Cyber threats

Cyber threats Computers and Electronics Adware Spyware

Copy-paste heist or clipboard-injector attacks on cryptousers

SecureList

MARCH 28, 2023

Although we have written about a similar malware attack in 2017 in one of our blogposts , the technique is still very relevant today as it doesn’t have any perfect solution from the perspective of operating system design. The purpose of protecting it with a password is to evade static-signature detection by antivirus solutions.

Cryptocurrency

Cryptocurrency Malware Banking Passwords

Lab Walkthrough?—?The WannaCry Ransomware

Pentester Academy

FEBRUARY 23, 2023

Introduction In May 2017, a worldwide ransomware attack infamously known as WannaCry was set in motion. This ransomware made use of the EternalBlue , an exploit of Microsoft’s implementation of their SMB protocol, released by The Shadow Brokers hacker group in April 2017, to gain access to remote Windows machines in most cases.

Ransomware

Ransomware Encryption Cryptocurrency Banking

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

Security Affairs

OCTOBER 17, 2018

Using an encrypted payload is quite a common way to evade Antivirus, since the encrypted payload changes depending on the used key. It’s not hard to see what the payload does (CVE-2017-11882 ), but if you run it on a dynamic engine you would probably have more chances to prove it. Stage1: Encrypted Content. But what is the key?

Malware

Malware Computers and Electronics Encryption Penetration Testing

What is Ransomware? The Major Cybersecurity Threat Explained

Spinone

DECEMBER 16, 2019

The locker ransomware was more popular years ago, before the mass adoption of cloud technologies and services (like G Suite and Office 365). Ransomware Examples WannaCry was one of the major headliners in 2017. Petya was a reason behind many attacks during 2016 and 2017. You have likely heard of some of them.

Ransomware

Ransomware Cybersecurity Backups Social Engineering

APT trends report Q1 2021

SecureList

APRIL 27, 2021

Further investigation of the Sunburst backdoor revealed several features that overlap with a previously identified backdoor known as Kazuar , a.NET backdoor first reported in 2017 and tentatively linked to the Turla APT group. In November and December 2020, two public blog posts were published about this campaign.

Malware

Malware Spyware Government Social Engineering

IT threat evolution in Q2 2021. PC statistics

SecureList

AUGUST 12, 2021

Web antivirus recognized 675,832,360 unique URLs as malicious. Our file antivirus detected 68,294,298 unique malicious and potentially unwanted objects. In their blog, DarkSide’s creators heaped the blame on third-party operators. Ransomware attacks were defeated on the computers of 97,451 unique users.

Adware

Adware Malware Ransomware IoT

Attacks against machine learning — an overview

Elie

MAY 30, 2018

This blog post survey the attacks techniques that target AI (artificial intelligence) systems and how to protect against them. Adversarial inputs include malicious documents designed to evade antivirus, and emails attempting to evade spam filters. NIST (National Institute of Standards and Technology) cybersecurity event recovery guide.

Accountability

Accountability Artificial Intelligence Engineering Retail

Attacks against machine learning — an overview

Elie

MAY 30, 2018

This blog post survey the attacks techniques that target AI (artificial intelligence) systems and how to protect against them. Adversarial inputs include malicious documents designed to evade antivirus, and emails attempting to evade spam filters. NIST (National Institute of Standards and Technology) cybersecurity event recovery guide.

Accountability

Accountability Artificial Intelligence Engineering Retail

Sunburst backdoor – code overlaps with Kazuar

SecureList

JANUARY 11, 2021

On December 13, 2020, FireEye published a blog post detailing a supply chain attack leveraging Orion IT, an infrastructure monitoring and management platform by SolarWinds. In a previous blog, we dissected the method used by Sunburst to communicate with its C2 server and the protocol by which victims are upgraded for further exploitation.

Malware

Malware Media Internet Internet

Cyber Security Informer

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

Tracing the Supply Chain Attack on Android

Webinars

Trending Sources

Top Cybersecurity Accounts to Follow on Twitter

Webinars

The Persistence of Abusive Certificates in Malware

Tracing the Supply Chain Attack on Android

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

Copy-paste heist or clipboard-injector attacks on cryptousers

Lab Walkthrough?—?The WannaCry Ransomware

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

What is Ransomware? The Major Cybersecurity Threat Explained

APT trends report Q1 2021

IT threat evolution in Q2 2021. PC statistics

Attacks against machine learning — an overview

Attacks against machine learning — an overview

Sunburst backdoor – code overlaps with Kazuar

Stay Connected