Security Affairs

MAY 23, 2024

A previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ has been targeting military and government entities since 2018. Bitdefender researchers discovered a previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ that has been targeting military and government entities since 2018.

Malware 106

Malware Accountability Phishing Data collection 106

Malwarebytes

NOVEMBER 1, 2022

LinkedIn knows it has a problem with bots and fake accounts, and has acknowledged this on more than one occasion. For years, it has been aware of spam, fake job offers, phishing, fraudulent investments, and (at times) malware, and has been trying to combat those issues. What's new? The "About this profile" feature.

Accountability 87

Accountability Cryptocurrency Education Technology 87

SiteLock

AUGUST 27, 2021

People were curious to know how we Find, Fix, and Prevent malware. SiteLock (@SiteLock) August 12, 2018. Guillaume Hamel (@guihamel) August 12, 2018. Consider searcher intent and consumer intent to account for what people will really say and mean. Our Gold sponsor experience was excellent!

Firewall 98

Firewall Malware Marketing Internet 98

Security Affairs

JANUARY 22, 2023

Roaming Mantis threat actors were observed using a new variant of their mobile malware Wroba to hijack DNS settings of Wi-Fi routers. Researchers from Kaspersky observed Roaming Mantis threat actors using an updated variant of their mobile malware Wroba to compromise Wi-Fi routers and hijack DNS settings. Agent.eq (a.k.a

DNS 91

DNS Mobile Malware Hacking 91

Malwarebytes

FEBRUARY 24, 2022

According to a joint security advisory published yesterday by US and UK cybersecurity and law enforcement agencies, a new malware called Cyclops Blink has surfaced to replace the VPNFilter malware attributed to the Sandworm group, which has always been seen as a Russian state-sponsored group. Cyclops Blink.

Malware 145

Malware Firewall Firmware DDOS 145

Security Affairs

FEBRUARY 17, 2024

Ukrainian national Vyacheslav Igorevich Penchukov has pleaded guilty to his key roles in the Zeus and IcedID malware operations. Vyacheslav Igorevich Penchukov was a leader of two prolific malware groups that infected thousands of computers with malicious software. Since May 2019, Penchukov had a prominent role in the Zeus operation.

Malware 91

Malware Cybercrime Banking Hacking 91

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking 104

Banking Accountability Mobile Cryptocurrency 104

Security Affairs

SEPTEMBER 19, 2018

The researchers set up a honeypot to collect data on infected IoT devices, the way threat actors infect IoT devices and what families of malware are involved. In the first six months of 2018, the experts observed a number of malware samples that was up three times as many samples targeting IoT devices as in the whole of 2017.

IoT 80

IoT Passwords Malware Advertising 80

Security Affairs

MAY 13, 2020

The United States Cyber Command (USCYBERCOM) has uploaded five new North Korean malware samples to VirusTotal. The United States Cyber Command (USCYBERCOM) has shared five new malware samples attributed to the North Korea-linked Lazarus APT , it has uploaded the malicious code to VirusTotal. ” reads the DHS CISA’s advisory.

Malware 115

Malware Advertising Government Cryptocurrency 115

Security Affairs

DECEMBER 12, 2018

Experts from Kaspersky Lab reported that that the recently patched Windows kernel zero-day vulnerability ( CVE-2018-8611 ) has been exploited by several threat actors. Microsoft’s Patch Tuesday updates for December 2018 address nearly 40 flaws, including a zero-day vulnerability affecting the Windows kernel. Pierluigi Paganini.

Spyware 94

Spyware Advertising Accountability Malware 94

Security Affairs

JUNE 11, 2021

Experts spotted a new mysterious malware that was used to collect a huge amount of data, including sensitive files, credentials, and cookies. Threat actors used custom malware to steal data from 3.2 million Windows systems between 2018 and 2020. The malware stole nearly 26 million login credentials holding 1.1

Malware 111

Malware Computers and Electronics Software Financial Services 111

Security Affairs

SEPTEMBER 1, 2021

Securities and Exchange Commission (SEC) announced sanctions against several organizations over email account hacking. Securities and Exchange Commission (SEC) announced sanctions against eight entities belonging to three companies over email account hacking due to cybersecurity failures. Pierluigi Paganini.

Accountability 81

Accountability Hacking Financial Services Cybersecurity 81

Security Affairs

NOVEMBER 5, 2021

have been hijacked, threat actors replaced them with versions laced with password-stealing malware. have been hijacked, threat actors replaced them versions laced with password-stealing malware. was released in December 2018, but developers noticed that several suspicious versions (2.0.3, Two popular npm libraries, coa and rc.

Passwords 97

Passwords Malware Accountability Hacking 97

Malwarebytes

NOVEMBER 24, 2021

No matter which of the many accounts post up these videos, they all typically link to the same download hosting site. When free games lead to Malware. In 2018, Fortnite gamers were targeted by scammers pushing Trojan.Malpack files as Fortnite freebies. Brand new accounts with no other content than these videos.

Malware 143

Malware Scams Passwords Cryptocurrency 143

Krebs on Security

APRIL 19, 2019

Marcus Hutchins, a 24-year-old blogger and malware researcher arrested in 2017 for allegedly authoring and selling malware designed to steal online banking credentials, has pleaded guilty to criminal charges of conspiracy and to making, selling or advertising illegal wiretapping devices. It remains unclear when he will be sentenced.

Banking 177

Banking Malware Advertising Government 177

Malwarebytes

JANUARY 16, 2024

The university was notified by an undisclosed third party, who provided information to help the team find and identify the malware. Together, CWRU and the FBI were able to identify that an IP address with which the malware was communicating had also been used to access the alumni email account of a man called Phillip Durachinsky.

Malware 83

Malware Passwords Identity Theft Data collection 83

Security Affairs

OCTOBER 3, 2020

Facebook shared details about a long-running ad-fraud campaign that’s been ongoing since 2016 targeting Facebook users with SilentFade malware. The social network giant revealed that malware has a Chinese origin and allowed hackers to siphon $4 million from users’ advertising accounts. ” continues the paper. “The

Malware 106

Malware Advertising Accountability Authentication 106

Krebs on Security

AUGUST 25, 2021

In 2018, Andrew Schober was digitally mugged for approximately $1 million worth of bitcoin. After several years of working with investigators, Schober says he’s confident he has located two young men in the United Kingdom responsible for using a clever piece of digital clipboard-stealing malware that let them siphon his crypto holdings.

Cryptocurrency 337

Cryptocurrency Malware Mobile Accountability 337

Security Affairs

APRIL 7, 2021

A new supply chain attack made the headlines, threat actors compromised at least one update server of smartphone maker Gigaset to deliver malware. The German device maker Gigaset was the victim of supply chain attack, threat actors compromised at least one server of the company to deliver malware. Gigaset manufactures DECT telephones.

Malware 107

Malware Adware Firmware Accountability 107

SiteLock

AUGUST 27, 2021

This is the reality for many website owners, and now more than ever, they need to be on alert for cyberattacks in 2018. The most worrying trend for website owners: cybercriminals are increasingly using malware , or software that is used for malicious purposes, to take advantage of website visitors. Why are these cyberattacks happening?

Malware 52

Malware Engineering Phishing Accountability 52

Security Affairs

MARCH 19, 2019

Security experts at Group-IB presented at Money2020 Asia the results of an interesting analysis of hi-tech crime landscape in Asia in 2018. The number of leaked cards increased in 2018 by 56%. The total underground market value of Singaporean banks’ cards compromised in 2018 is estimated at nearly $640 000.

Banking 78

Banking Government Passwords Marketing 78

SecureList

MARCH 1, 2021

The mobile malware Trojan-Ransom.AndroidOS.Agent.aq Last year was notable for both malware and adware, the two very close in terms of capabilities. Users attacked by adware in 2018 through 2020 ( download ). Interestingly enough, the share of adware attacks increased in relation to mobile malware in general.

Mobile 138

Mobile Malware Adware Banking 138

Security Affairs

NOVEMBER 15, 2020

million Pluto TV user accounts on a hacking forum for free, he claims they were stolen by ShinyHunters threat actor. Bleeping Computer, which has validated the authenticity of the archive, reported that the latest record in the database was created on October 12th, 2018. accounts exposed appeared first on Security Affairs.

Accountability 96

Accountability Hacking Data breaches Passwords 96

Security Affairs

OCTOBER 19, 2020

Researchers from Kaspersky Lab have spotted new variants of the GravityRAT malware that now can be also used to infect Android and macOS devices. GravityRAT is a malware strain known for checking the CPU temperature of Windows computers to avoid being executed in sandboxes and virtual machines. ” concludes Kaspersky.

Malware 111

Malware Computers and Electronics Spyware Advertising 111

Krebs on Security

SEPTEMBER 30, 2023

” New York City-based cyber intelligence firm Flashpoint said the Snatch ransomware group was created in 2018, based on Truniger’s recruitment both on Russian language cybercrime forums and public Russian programming boards. ” In at least some of those recruitment ads — like one in 2018 on the forum sysadmins[.]ru

Ransomware 219

Ransomware Accountability Cybercrime Backups 219

Malwarebytes

NOVEMBER 16, 2021

CERT-IN had described GravityRAT as “unlike most malware, which are designed to inflict short term damage. According to latest inputs, GravityRAT has now become self aware and is capable of evading several commonly used malware detection techniques.”. The history of GravityRAT.

Malware 127

Malware Encryption Media Marketing 127

Security Affairs

DECEMBER 2, 2020

Russian-linked cyberespionage group Turla employed a new malware toolset, named Crutch, in targeted attacks aimed at high-profile targets. The Crutch framework was employed in attacks since 2015 to siphon sensitive data and transfer them to Dropbox accounts controlled by the Russian hacking group. ” Pierluigi Paganini.

Malware 118

Malware Accountability Hacking Government 118

Krebs on Security

FEBRUARY 7, 2024

The forum’s member roster includes a Who’s Who of top Russian cybercriminals, and it featured sub-forums for a wide range of cybercrime specialities, including malware, spam, coding and identity theft. In almost any database leak, the first accounts listed are usually the administrators and early core members.

Cybercrime 253

Cybercrime Accountability Identity Theft Hacking 253

SiteLock

AUGUST 27, 2021

In fact, website attacks increased 14 percent in Q1 2018 compared to Q4 2017 as cybercriminals set their sights on independent websites and small businesses. The SiteLock Website Security Insider Q1 2018 analyzes data from over 10 million websites to pinpoint the threats website owners need to be aware of.

Small Business 52

Small Business Media Risk Data breaches 52

The Security Ledger

APRIL 17, 2019

Distil Network's annual assessment of bad bots, “Bad Bot Report 2019: The Bot Arms Race Continues,” found that bad bots accounted for one in five website requests in 2018, or 20.4 The post Report: Bad Bots sent One in Five Web Requests in 2018 appeared first on The Security Ledger. percent of web traffic.

Accountability 40

Accountability Ransomware Malware Mobile 40

Security Affairs

FEBRUARY 23, 2021

Twitter removed dozens of accounts allegedly used by Russia-linked threat actors to disseminate disinformation and target western countries. Twitter has removed dozens of accounts used by Russia-linked threat actors that were used to disseminate disinformation and to target the European Union, the United States, and the NATO alliance.

Accountability 77

Accountability Government Internet Internet 77

Malwarebytes

OCTOBER 22, 2023

First publicly reported in 2018, DarkGate is a Windows-based malware with a wide-range of capabilities including credential stealing and remote access to victim endpoints. It was connected to a known malware attack campaign using Teams phishing to install DarkGate Loader. exe" " [link] [.]188[.]87[.]58:2351" 58:2351 [link] [.]188[.]87[.]58:2351/msibtbgvbyy

Malware 66

Malware Phishing Data breaches Accountability 66

Security Affairs

FEBRUARY 27, 2020

Lampion malware is the most critical malware affecting Portuguese users’ last three months. This malware appears to be on the rise at the end of February 2020, after a fresh update where its operators introduced a new obfuscation layer on the first stage of the threat. Figure 7: Lampion’s email received on the target account.

Malware 100

Malware Advertising Government Accountability 100

Krebs on Security

JANUARY 2, 2019

The company says its systems were hit by the Ryuk ransomware, the same malware strain that crippled printing and delivery operations for multiple major U.S. 29, 2018, the attackers broke in through a compromised login account on Christmas Eve and quickly began infecting servers with the Ryuk ransomware strain.

Ransomware 219

Ransomware Malware Backups Accountability 219

SiteLock

AUGUST 27, 2021

Be aware of the negative effects of malware for your business and know how to adequately address them if you find yourself dealing with a malware attack. What Problems Can Malware Cause? A few of the particularly tough effects of malware come from defacement, backdoor, redirect, and SEO spam attacks.

Small Business 98

Small Business Malware Software Data breaches 98

Security Affairs

DECEMBER 18, 2018

New Malware Takes Commands From Memes Posted On Twitter. Security researchers at Trend Micro have spotted a new strain of malware that retrieved commands from memes posted on a Twitter account controlled by the attackers. “Twitter has already taken the account offline as of December 13, 2018.”

Malware 85

Malware Accountability Advertising Threat Detection 85

SecureWorld News

OCTOBER 20, 2020

But the GRU members being charged in this case started with other strains of malware and a narrow target: Ukraine's power grid. In what is commonly referred to as the most destructive and costly cyber attack ever, the conspirators unleashed the 'NotPetya' malware. The GRU's Olympic Destroyer malware. and a large U.S.

Malware 64

Malware Cyber Attacks Government Manufacturing 64