2020, Antivirus, Encryption and Information Security

ViperSoftX uses more sophisticated encryption and anti-analysis techniques

Security Affairs

APRIL 29, 2023

xyz pic.twitter.com/VLhISark8Y — Goldwave (@OGoldwave) March 13, 2023 The variant employed in the campaign supports a more sophisticated encryption method of byte remapping and a monthly rotation of the C2 server. ViperSoftX also checks for active antivirus products running on the machine. c2 arrowlchat[.]com

Encryption

Encryption Malware Cryptocurrency Software

Akira ransomware received $42M in ransom payments from over 250 victims

Security Affairs

APRIL 21, 2024

The Akira ransomware operators implement a double extortion model by exfiltrating victims’ data before encrypting it. Earlier versions of the ransomware were written in C++ and the malware added the.akira extension to the encrypted files. The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269.

Ransomware

Ransomware Encryption Antivirus VPN

Info stealers and how to protect against them

Security Affairs

DECEMBER 18, 2023

They may use various tactics to evade antivirus and other security measures. Some info stealers may use encryption techniques to hide their communication with command-and-control servers, making it more challenging for security systems to detect malicious activities.

Banking

Banking Cybercrime Malware Accountability

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

The Five-Step PCI DSS 4.0 Transition Checklist

CyberSecurity Insiders

JANUARY 6, 2023

billion in 2020, a 43% increase. billion in payment card-related losses occurred in 2020 (over one-third of them in the U.S.). Test security of systems and networks regularly. Support information security within organizational policies and programs. billion in 2019 to $815.4 The Nilson Report  estimated $28.6

Antivirus

Antivirus Retail Software Accountability

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. File encryption 2013 – 2015. pharma giant ExecuPharm.

Ransomware

Ransomware Hacking Encryption Penetration Testing

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

In March 2020, CERT France cyber-security agency warned about a new wave of ransomware attack that was targeting the networks of local government authorities. According to the experts, the first infections were observed in late 2019, victims reported their files were encrypted by a strain of malware.

Education

Education Ransomware Encryption Antivirus

Ezuri memory loader used in Linux and Windows malware

Security Affairs

JANUARY 8, 2021

Upon executing the code, it will ask the user the path for the payload to be encrypted and the password to be used for AES encryption to hide the malware within the loader. Then the packer compiles the loader with the payload encrypted within it, so it can be decrypted and executed in memory once it is delivered in the targeted system.

Malware

Malware Encryption Antivirus Passwords

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

Security Affairs

APRIL 7, 2021

This ransomware encrypts data from victims with AES-256 + RSA-8192 and then demands a ~ 2 BTC ransom to get the files back. At least in one case, an attack of the ransomware resulted in a temporary shutdown of the industrial process due to servers used to control the industrial process becoming encrypted.” Pierluigi Paganini.

VPN

VPN Ransomware Antivirus Firmware

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

In March 2020, CERT France cyber-security agency warned about a new wave of ransomware attack that was targeting the networks of local government authorities. According to the experts, the first infections were observed in late 2019, victims reported their files were encrypted by a strain of malware. This new version used the.

Ransomware

Ransomware Penetration Testing Healthcare Government

Mysterious custom malware used to steal 1.2TB of data from million PCs

Security Affairs

JUNE 11, 2021

million Windows systems between 2018 and 2020. Researchers from NordLocker have discovered an unsecured database containing 1.2-terabyte terabyte of stolen data. Threat actors used custom malware to steal data from 3.2 The database includes 6.6 How to protect your data from such kind of malware?

Malware

Malware Computers and Electronics Software Financial Services

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Disable hyperlinks in received emails.

Passwords

Passwords Government Firmware Accountability

Report: Threat of Emotet and Ryuk

Security Affairs

JANUARY 31, 2020

Experts at cyber security firm Cypher conducted a study on Portuguese domains during 2019 and concluded that Emotet and Ryuk were the most active threats. Emotet , the most widespread malware worldwide and Ryuk , a ransomware type, are growing threats and real concerns for businesses and internet users in 2020. DOWNLOAD FULL REPORT.

Malware

Malware Retail Advertising Antivirus

Epsilon Red – our research reveals more than 3.5 thousand servers are still vulnerable

Security Affairs

JUNE 25, 2021

It works: one of the victims has already paid over $200,000 in Bitcoin, setting a dangerous precedent of companies giving into the demands of cyber criminals to prevent a possible data leak and damage to their reputation and loss of operations due to crippled IT services after important file encryption. You can check it. KEY: –. !!!

Antivirus

Antivirus Ransomware Backups Encryption

US CISA and FBI publish joint alert on DarkSide ransomware

Security Affairs

MAY 13, 2021

The Darkside ransomware gang first emerged in the threat landscape in August 2020, in recent months the group was very active and targeted organizations worldwide. Set antivirus/antimalware programs to conduct regular scans of IT network assets using up-to-date signatures. 3 ],[ 4 ]” reads the joint alert.

Ransomware

Ransomware Healthcare Phishing Risk

njRAT RAT operators leverage Pastebin C2 tunnels to avoid detection

Security Affairs

DECEMBER 10, 2020

“In observations collected since October 2020, Unit 42 researchers have found that malware authors have been leveraging njRAT (also known as Bladabindi), a Remote Access Trojan, to download and deliver second-stage payloads from Pastebin, a popular website that is well-known to be used to store data anonymously.”

Malware

Malware Antivirus Encryption Hacking

Brazilian trojan impacting Portuguese users and using the same capabilities seen in other Latin American threats

Security Affairs

MARCH 14, 2022

The victims’ data is encrypted and sent to the C2 server geolocated in Russia. In addition, most artifacts extracted also matched a threat documented in 2020 and available here. At this moment, the infection chain is able to bypass the antivirus detection, with the latter EXE ( WpfApp14.exe Phishing wave.

Banking

Banking Encryption Malware Phishing

Microsoft: North Korea-linked Zinc APT targets security experts

Security Affairs

JANUARY 29, 2021

In mid-2020, ZINC hackers created Twitter profiles for fake security researchers that were used to retweet security content and posting about vulnerability research. . The researchers who visited the post from October 19 to 21, 2020, using the Chrome browser, were infected with a known ZINC malware.

Malware

Malware Antivirus Hacking Accountability

New variant for Mac Malware XCSSET compiled for M1 Chips

Security Affairs

MARCH 13, 2021

XCSSET is a Mac malware that was discovered by Trend Micro in August 2020, it was spreading through Xcode projects and exploits two zero-day vulnerabilities to steal sensitive information from target systems and launch ransomware attacks. Experts believe that this malware is the result of advanced and sophisticated adversaries.

Malware

Malware Adware Architecture Antivirus

Brazilian trojan banker is targeting Portuguese users using browser overlay

Security Affairs

MAY 7, 2020

Since the end of April 2020, a new trojan has been affecting Portuguese users from several bank organizations. Since the end of April 2020, a new Trojan variant is affecting users from several bank organizations in Portugal. In detail, the bitcoin wallet was used in recent transactions, last: 2020-01-14 00:22h.

Banking

Banking Malware Phishing Social Engineering

AMT Games data breach: Millions of Users’ Messages, Account IDs, and IP Addresses Exposed

Security Affairs

JUNE 2, 2021

There was no need for a password or login credentials to access the information, and the data was not encrypted. The leak has since been secured. A good antivirus program can also aid in protection from malware, trojans, and other dangers. What’s Happening? AMT Games is a mobile and browser game developer based in China.

Data breaches

Data breaches Accountability Mobile Phishing

On the Irish Health Services Executive Hack

Schneier on Security

FEBRUARY 11, 2022

Under-resourced Information Security Managers were not performing their business as usual role (including a NIST-based cybersecurity review of systems) but were working on evaluating security controls for the COVID-19 vaccination system. The antivirus server was later encrypted in the attack).

Antivirus

Antivirus Hacking CISO Ransomware

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. — Dave Kennedy (@HackingDave) July 15, 2020. link] pic.twitter.com/cVIyB44o6q — Eugene Kaspersky (@e_kaspersky) June 22, 2020. Eugene Kaspersky | @e_kaspersky.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Cloud-based security: SECaaS

eSecurity Planet

DECEMBER 30, 2020

To ease these burdens, SECaaS and SOCaaS vendors have emerged as cloud-based security as a service that can collect, analyze, and correlate your information from diverse systems and applications — turning former headaches into actionable information security intelligence. Security as a Service (SECaaS) .

Penetration Testing

Penetration Testing Cybersecurity Antivirus Network Security

IoT Devices a Huge Risk to Enterprises

eSecurity Planet

JULY 22, 2021

According to a pair of recent reports from cloud security vendor Zscaler, cybercriminals picked up on this, with the result being a significant surge in malware attacks against these devices. ThreatLabz found that 76 percent of all transactions occurred over plain-text channels; 24 percent were over secure encrypted pathways.

IoT

IoT Risk Architecture Manufacturing

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

The Last Watchdog

FEBRUARY 28, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Cyber threats

Cyber threats Computers and Electronics Adware Spyware

Cyber mercenaries group DeathStalker uses a new backdoor

Security Affairs

DECEMBER 5, 2020

. “In strict accordance with DeathStalker’s traditions, the implant will try to evade detection or sandboxes execution with various tricks such as detecting mouse movements, filtering the client’s MAC addresses, and adapting its execution flow depending on detected antivirus products.”

DNS

DNS Phishing Antivirus Encryption

The Most Common Types of Malware in 2021

CyberSecurity Insiders

JANUARY 31, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Malware

Malware Computers and Electronics Adware Spyware

Cybersecurity Awareness Month: Security Experts Reflect on Safety

CyberSecurity Insiders

NOVEMBER 1, 2021

And, the system must be intuitive and convenient, so executives remain within its workflows and processes without straying to other systems and creating security gaps. Jon Clemenson, director of information security, TokenEx. Increasingly, traditional sandboxing and antivirus software aren’t enough.

Cybersecurity

Cybersecurity Backups Ransomware Passwords

Top Cybersecurity Trends for 2017

Spinone

NOVEMBER 15, 2016

It’s clear that more funds and resources must be dedicated to cybersecurity, with cybersecurity spending expecting to hit $170 billion by 2020. Previously Separate Security Policies Must Overlap and Converge Information security, IT security, and physical security are no longer separate concepts.

Cybersecurity

Cybersecurity Software Internet Internet

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. Startup Est Headquarters Staff Funding Funding Type Abnormal Security 2018 San Francisco, CA 261 $74.0 Series B Apiiro Security 2019 Tel Aviv, Israel 65 $35.0

Cybersecurity

Cybersecurity Threat Detection Artificial Intelligence Risk

Cyber Security Informer

ViperSoftX uses more sophisticated encryption and anti-analysis techniques

Akira ransomware received $42M in ransom payments from over 250 victims

Webinars

Trending Sources

Info stealers and how to protect against them

Webinars

The Five-Step PCI DSS 4.0 Transition Checklist

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Ezuri memory loader used in Linux and Windows malware

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

PYSA ransomware gang is the most active group in November

Mysterious custom malware used to steal 1.2TB of data from million PCs

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Report: Threat of Emotet and Ryuk

Epsilon Red – our research reveals more than 3.5 thousand servers are still vulnerable

US CISA and FBI publish joint alert on DarkSide ransomware

njRAT RAT operators leverage Pastebin C2 tunnels to avoid detection

Brazilian trojan impacting Portuguese users and using the same capabilities seen in other Latin American threats

Microsoft: North Korea-linked Zinc APT targets security experts

New variant for Mac Malware XCSSET compiled for M1 Chips

Brazilian trojan banker is targeting Portuguese users using browser overlay

AMT Games data breach: Millions of Users’ Messages, Account IDs, and IP Addresses Exposed

On the Irish Health Services Executive Hack

Top Cybersecurity Accounts to Follow on Twitter

Cloud-based security: SECaaS

IoT Devices a Huge Risk to Enterprises

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

Cyber mercenaries group DeathStalker uses a new backdoor

The Most Common Types of Malware in 2021

Cybersecurity Awareness Month: Security Experts Reflect on Safety

Top Cybersecurity Trends for 2017

Top Cybersecurity Startups to Watch in 2022

Stay Connected