Security Affairs

JULY 23, 2019

Experts discovered several flaws in Comodo Antivirus, including a vulnerability that could allow to escape the sandbox and escalate privileges. The Tenable expert David Wells discovered five flaws in the Comodo Antivirus and Comodo Antivirus Advanced. We recommend to keep updated on future Comodo Antivirus releases.”

Antivirus 78

Antivirus Advertising Hacking Malware 78

Security Affairs

AUGUST 15, 2019

A vulnerability in Kaspersky Antivirus had exposed a unique identifier associated with users to every website they have visited in the past 4 years. A vulnerability in the Kaspersky Antivirus software, tracked as CVE-2019-8286, had exposed a unique identifier associated with its users to every website they have visited in the past 4 years.

Antivirus 91

Antivirus Advertising Software Internet 91

Security Affairs

NOVEMBER 14, 2019

McAfee a vulnerability in its antivirus software that could allow an attacker to escalate privileges and execute code with SYSTEM privileges. The CVE-2019-3648 flaw could be exploited by attackers to load unsigned DLLs into multiple services that run as NT AUTHORITYSYSTEM. SecurityAffairs – McAfee, hacking). Pierluigi Paganini.

Antivirus 80

Antivirus Advertising Software Internet 80

Adam Levin

JULY 10, 2020

A recent article released by cybersecurity and antivirus firm Bitdefender shows that 8.4 For comparison, that’s a 273% increase over the first two quarters of 2019 combined. million customers of MGM Resorts was found posted on a hacking forum. MGM Resorts (10.6 Marriott (5.2

Data breaches 252

Data breaches Social Engineering Antivirus Scams 252

Security Affairs

MAY 6, 2021

Chinese military unit PLA Unit 61419 is suspected to be involved in cyber-espionage campaigns against multiple antivirus companies. In the summer of 2019, a China-linked APT called Tick Group exploited two zero-days impacting Trend Micro’s Apex One and OfficeScan XG enterprise security products. .

Antivirus 53

Antivirus Software Hacking Malware 53

Security Affairs

JANUARY 6, 2023

Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware allowing its victims to restore their data for free. Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware , which can allow victims of the group to restore their data for free. SecurityAffairs – hacking, ransomware).

Ransomware 96

Ransomware Antivirus Encryption Backups 96

Security Affairs

NOVEMBER 22, 2020

“Two Romanian suspects have been arrested yesterday for allegedly running the CyberSeal and Dataprotector crypting services to evade antivirus software detection.” The pair also operated the Cyberscan service which allowed their clients to test their malware against antivirus tools. SecurityAffairs – hacking, cybercrime).

Malware 132

Malware Antivirus Cybercrime Software 132

The Last Watchdog

JUNE 21, 2020

In many cases, the crooks hack managed service providers (MSPs) first and then use this access to compromise the partnering organizations. In November 2019, the criminals behind a ransomware species called Maze started a new trend that is currently gaining momentum on the dark web.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

APRIL 11, 2019

Users that have downloaded the VSDC multimedia editing software between 2019-02-21 and 2019-03-23, may have been infected with malware. Users that have downloaded the VSDC multimedia editing software between 2019-02-21 and 2019-03-23, may have been infected with a banking trojan and an information stealer.

Software 68

Software Hacking Banking Malware 68

Security Affairs

JANUARY 6, 2023

“The attack is similar to the one in the summer of 2019, when four other hospitals in Romania were targeted. In 2019 other four hospitals in Romania suffered ransomware attacks that were attributed to the PHOBOS extortion group. SecurityAffairs – hacking, Saint Gheorghe Recovery Hospital). Pierluigi Paganini.

Ransomware 85

Ransomware Antivirus Media Encryption 85

Security Affairs

JULY 22, 2021

Cybersecurity and Infrastructure Security Agency (CISA) published a security alert related to the discovery of 13 malware samples on compromised Pulse Secure devices, many of which were undetected by antivirus products. Some of the files discovered on hacked Pulse Connect Secure devices were modified versions of legitimate scripts.

Malware 129

Malware Antivirus Passwords Firewall 129

Security Affairs

NOVEMBER 11, 2019

The ZoneAlarm suite includes antivirus software and firewall solutions to and users and small organizations, it has nearly 100 million downloads. A company spokesperson told The Hacker News that attackers exploited the CVE-2019-16759 remote code execution vulnerability in the vBulletin forum software. Pierluigi Paganini.

Hacking 66

Hacking Data breaches Passwords Advertising 66

Security Affairs

DECEMBER 12, 2021

“A Russian national was sentenced today to 48 months in prison for operating a “crypting” service used to conceal the Kelihos malware from antivirus software, which enabled hackers to systematically infect approximately hundreds of thousands of victim computers around the world with malicious software, including ransomware.”

Antivirus 89

Antivirus Malware Cybercrime Cyber threats 89

Security Affairs

JUNE 17, 2021

Russian national Oleg Koshkin was convicted for operating a “crypting” service used to obfuscate the Kelihos bot from antivirus software. ”The websites promised to render malicious software fully undetectable by nearly every major provider of antivirus software. . SecurityAffairs – hacking, Kelihos). Pierluigi Paganini.

Antivirus 103

Antivirus Malware Cryptocurrency Software 103

Security Affairs

APRIL 22, 2021

Cybersecurity firm Trend Micro revealed that a threat actor is actively exploiting a flaw, tracked as CVE-2020-24557, in its antivirus solutions to gain admin rights on Windows systems. SecurityAffairs – hacking, Trend Micro). If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Pierluigi Paganini.

Antivirus 123

Antivirus Hacking Cybersecurity Information Security 123

Security Affairs

JANUARY 31, 2020

Experts at cyber security firm Cypher conducted a study on Portuguese domains during 2019 and concluded that Emotet and Ryuk were the most active threats. This is the conclusion of a study by Cipher Portugal, which studied Portuguese domains during 2019. This enhancement appeared in the middle of September 2019.

Malware 110

Malware Retail Advertising Antivirus 110

Krebs on Security

JUNE 1, 2023

Megatraffer explained that malware purveyors need a certificate because many antivirus products will be far more interested in unsigned software, and because signed files downloaded from the Internet don’t tend to get blocked by security features built into modern web browsers. “Antivirus software trusts signed programs more.

Malware 234

Malware Cybercrime Software Antivirus 234

The Last Watchdog

MAY 17, 2021

In pulling off that milestone hack, Paige Thompson took advantage of CapOne’s lack of focus on cloud security as the banking giant rushed headlong into leveraging Amazon Web Services. Luckily, Thompson left an easy trail for the FBI to follow and affect her arrest in August 2019. Here are the key takeaways: Cloud migration risks.

Cloud Migration 214

Cloud Migration Banking Firewall Software 214

Security Affairs

OCTOBER 23, 2019

Flaws in Avast, AVG, and Avira Antivirus could be exploited by an attacker to load a malicious DLL file to bypass defenses and escalate privileges. The Antivirus implements a self-defense mechanism that prevents malicious code to write and implant a DLL to its folders. SecurityAffairs – Avast, hacking). Pierluigi Paganini.

Antivirus 55

Antivirus Advertising Security Defenses Hacking 55

Security Affairs

AUGUST 3, 2020

The GandCrab was advertised in the Russian hacking community, researchers from LMNTRIX who discovered it noticed that authors was leveraging the RIG and GrandSoft exploit kits to distribute the malware. The GandCrab Ransomware-as-a-Service shut down operations in June 2019 and told affiliates to stop distributing the ransomware.

Ransomware 120

Ransomware Advertising Malware Hacking 120

eSecurity Planet

OCTOBER 11, 2022

Recorded as CVE-2019-16098 , the flaw allows any authenticated user to read and write to arbitrary memory, I/O ports and MSR control registers. Researchers observed one particularly troubling exploit, as BlackByte recently used the vulnerability to jam security solutions such as EDR and antivirus software. sys and RTCore64.sys,

Ransomware 113

Ransomware Antivirus Software Malware 113

Krebs on Security

APRIL 3, 2024

The term “FUD” in those names stands for “ F ully U n- D etectable,” and it refers to cybercrime resources that will evade detection by security tools like antivirus software or anti-spam appliances. In 2019, The Manipulaters failed to renew their core domain name — manipulaters[.]com

Phishing 214

Phishing Cybercrime Malware Advertising 214

Security Affairs

SEPTEMBER 28, 2020

Universal Health Services (UHS) is an American Fortune 500 company that provides hospital and healthcare services, in 2019, its annual revenues were $11.37 billion in 2019. “When the attack happened multiple antivirus programs were disabled by the attack and hard drives just lit up with activity. Pierluigi Paganini.

Ransomware 118

Ransomware Healthcare Advertising Antivirus 118

Security Affairs

JUNE 12, 2019

“During the period of March to May 2019, Morphisec Labs observed a new, highly sophisticated variant of the ShellTea / PunchBuggy backdoor malware that attempted to infiltrate a number of machines within the network of a customer in the hotel-entertainment industry.” SecurityAffairs – FIN8, hacking). Pierluigi Paganini.

Hacking 77

Hacking Malware Advertising Retail 77

Security Affairs

JULY 1, 2019

On June 26, 2019, experts at eSentire Threat Intelligence discovered a C2 infrastructure pointing to a similar Dridex variant that was undetected by most of the antivirus listed in VirusTotal service. At the time of discovery, using data from VirusTotal, only six antivirus solutions of about 60 detected suspicious behavior [ 2 ].

Banking 77

Banking Antivirus Advertising Encryption 77

Security Affairs

JUNE 21, 2020

. “The new malware tricks victims into bypassing Apple’s built-in macOS security protections, and it uses sneaky tactics in an effort to evade antivirus detection.” “As of Friday, the new malware installer and its payload had a 0/60 detection rate among all antivirus engines on VirusTotal.” up to 10.14.3.

Engineering 141

Engineering Malware Adware Antivirus 141

Security Affairs

APRIL 27, 2020

The Shade infections increased during October 2018, keeping a constant trend until the second half of December 2018, taking a break around Christmas, and then resuming in mid-January 2019 doubled in size. In fact, we stopped its distribution in the end of 2019. SecurityAffairs – Shade Ransomware, hacking). Pierluigi Paganini.

Ransomware 121

Ransomware Advertising Antivirus Education 121

Security Affairs

APRIL 29, 2021

Experts from Kaspersky explained that in February 2019, multiple antivirus companies received a collection of malware samples, some of them cannot be associated with the activity of known APT groups. . Symantec believes Longhorn is a North American hacking group that has been active since at least 2011.

Malware 108

Malware Hacking Government Telecommunications 108

Security Affairs

FEBRUARY 7, 2020

The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. SecurityAffairs – Pasco and Kobe Steel, hacking). According to people involved, Chinese hackers Tick may have been involved.

Manufacturing 106

Manufacturing Data breaches Advertising Antivirus 106

Krebs on Security

JULY 18, 2022

These two software are currently unknown to most if not all antivirus companies.” “FUD” in the ad above refers to software and download links that are “Fully UnDetectable” as suspicious or malicious by all antivirus software. The Exe Clean service made malware look like goodware to antivirus products.

VPN 296

VPN Computers and Electronics Antivirus Software 296

CyberSecurity Insiders

JANUARY 6, 2023

billion in 2019 to $815.4 Requirement 5: It is no longer sufficient to just have standard antivirus software. This requirement now specifically calls for anti-malware to be in place, necessitating a strong antivirus solution with malware protection or EDR/MDR/XDR solution. In fact, the U.S. billion in 2020, a 43% increase.

Antivirus 138

Antivirus Retail Software Accountability 138

Security Affairs

AUGUST 26, 2019

” 2019-08-24: #Nemty #Ransomware version '1.0' ' Mutex "hate" | "fuckav" Link to Putin Photo Backup & Shadow Copy Removal | Extension Blacklist | File/Folder Blacklist | 'isRu' check | Stats Git -> [link] pic.twitter.com/fMmAWIfvWv — Vitali Kremez (@VK_Intel) August 24, 2019.

Ransomware 93

Ransomware Malware Antivirus Encryption 93

Security Affairs

JUNE 23, 2021

One of the fathers of antivirus software, the entrepreneur John McAfee has been found dead in a Barcelona prison cell while he was waiting for extradition to the US. In 2019 John McAfee tweeted that he had not filed tax returns for eight years because “taxation is illegal.” SecurityAffairs – hacking, McAfee).

Cryptocurrency 133

Cryptocurrency Banking Accountability Antivirus 133

Security Affairs

JANUARY 26, 2020

Citrix releases permanent fixes for CVE-2019-19781 flaw in ADC 11.1 Jeff Bezos phone was hacked by Saudi crown prince. Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack. SecurityAffairs – Newsletter, hacking). Hackers patch Citrix servers to deploy their own backdoor.

Data breaches 80

Data breaches Advertising Antivirus DDOS 80

Security Affairs

APRIL 7, 2021

“The lack of timely antivirus database updates for the security solution used on attacked systems also played a key role, preventing the solution from detecting and blocking the threat. It should also be noted that some components of the antivirus solution were disabled, further reducing the quality of protection.

VPN 99

VPN Ransomware Antivirus Firmware 99

Security Affairs

DECEMBER 26, 2022

” GuLoader first appeared on the threat landscape in 2019, it was used by threat actors to download multiple remote access trojans (RATs) such as AgentTesla , FormBook , Nanocore , NETWIRE and the Parallax RAT. SecurityAffairs – hacking, GuLoader). “It then maps that section via NtMapViewofSection on the suspended process.”

Malware 96

Malware Antivirus Hacking Cybersecurity 96

Security Affairs

MARCH 26, 2022

. – to its list of communications equipment and services that have been deemed a threat to national security, consistent with requirements in the Secure and Trusted Communications Networks Act of 2019.” The Agency warns the cybersecurity firm could be implicated in hacking attacks during the ongoing Russian invasion of Ukraine.

Risk 99

Risk Telecommunications Mobile Antivirus 99