Dark Reading

SEPTEMBER 30, 2021

Analysis of threat trends from last quarter reveals attackers ramped up their use of fileless malware, and zero-day malware accounted for almost two-thirds of all detections.

Malware 107

Malware Encryption Accountability 107

Security Affairs

APRIL 29, 2023

A new variant of the information-stealing malware ViperSoftX implements sophisticated techniques to avoid detection. Trend Micro researchers observed a new ViperSoftX malware campaign that unlike previous attacks relies on DLL sideloading for its arrival and execution technique. c2 arrowlchat[.]com c2 arrowlchat[.]com

Encryption 88

Encryption Malware Cryptocurrency Software 88

Security Affairs

APRIL 4, 2023

A new ransomware strain named Rorschach ransomware supports the fastest file-encrypting routine observed to date. The researchers conducted five separate encryption speed tests in a controlled environment (with 6 CPUs, 8192MB RAM, SSD, and 220000 files to be encrypted), limited to local drive encryption only.

Encryption 90

Encryption Ransomware Malware Backups 90

Security Affairs

MARCH 22, 2023

A tainted version of the legitimate ChatGPT extension for Chrome, designed to steal Facebook accounts, has thousands of downloads. The version employed in a recent campaign is based on a legitimate open-source project , threat actors added malicious code to steal Facebook accounts. Left: The “FakeGPT” Variant on Chrome Store.

Accountability 88

Accountability Encryption Hacking Cybercrime 88

Security Affairs

SEPTEMBER 9, 2022

Iran-linked APT group DEV-0270 (aka Nemesis Kitten) is abusing the BitLocker Windows feature to encrypt victims’ devices. Microsoft Security Threat Intelligence researchers reported that Iran-linked APT group DEV-0270 ( Nemesis Kitten ) has been abusing the BitLocker Windows feature to encrypt victims’ devices.

Encryption 118

Encryption Internet Internet Firewall 118

SecureWorld News

APRIL 24, 2023

As the frequency of data breaches surges, it becomes increasingly imperative to guarantee the security and adequate encryption of passwords. In this article, I will provide an overview of password encryption, explaining its essence and modus operandi. What is password encryption? Why is password encryption necessary?

Encryption 74

Encryption Passwords Password Management Software 74

Security Affairs

APRIL 17, 2024

The malware includes three heavily obfuscated C++ payloads compiled as 64-bit Executable and Linkable Format (ELF) files and packed with UPX. Financially motivated threat actors created an admin account to deploy the Effluence web shell plugin and execute arbitrary commands on the vulnerable server. ” states Cado Security.

Ransomware 133

Ransomware Encryption Malware Accountability 133

Security Affairs

SEPTEMBER 19, 2023

China-linked threat actor Earth Lusca used a new Linux malware dubbed SprySOCKS in a recent cyber espionage campaign. Researchers from Trend Micro, while monitoring the activity of the China-linked threat actor Earth Lusca , discovered an encrypted file hosted on a server under the control of the group.

Malware 102

Malware Encryption Telecommunications Authentication 102

CyberSecurity Insiders

FEBRUARY 25, 2022

A malware that can take over social media accounts of victims is seen propelling on Microsoft App Store and reports are in that it has so far infected over 5,000 accounts in the disguise of fake Temple Run and Subway Surfer games.

Malware 121

Malware Ransomware Media Encryption 121

The Last Watchdog

JUNE 2, 2021

They outlined why something called attribute-based encryption, or ABE, has emerged as the basis for a new form of agile cryptography that we will need in order to kick digital transformation into high gear. PKI is the authentication and encryption framework on which the Internet is built. Attribute-based access.

Encryption 176

Encryption Artificial Intelligence IoT Data collection 176

CyberSecurity Insiders

NOVEMBER 29, 2021

IKEA, the furniture giant from Sweden, has disclosed that its servers were hit by a Qakbot malware that could have compromised its staff and partner accounts to a certain extent. However, as the investigation is still underway, compromise of accounts is yet to be determined.

Malware 105

Malware Retail Banking Accountability 105

Malwarebytes

MARCH 26, 2023

There’s some bad things lurking in search engine results waiting to compromise your Facebook account. However, the real aim of the game here is to compromise Facebook accounts. Before sending the stolen cookies, they are encrypted as a way to try and discreetly get them off the target system.

Accountability 98

Accountability Scams Encryption Authentication 98

SC Magazine

APRIL 22, 2021

A large portion of growth in TLS use by malware operators is attributed to increased use of legitimate web and cloud services protected by TLS, including Discord, Pastebin, Github and Google’s cloud services. Setting up TLS for any application – including malware – has become very easy,” Jones said. Photo by Stephen Lam/Getty Images).

Malware 102

Malware Encryption Accountability Media 102

Security Affairs

NOVEMBER 13, 2021

Threat actors are distributing the GravityRAT remote access trojan masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Threat actors are distributing the GravityRAT RAT masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Read or write the files on the device’s external storage.

Encryption 129

Encryption Malware Media Authentication 129

SecureList

JANUARY 16, 2024

Introduction In the ever-evolving landscape of mobile security, hunting for malware in the iOS ecosystem is akin to navigating a labyrinth with invisible walls. Imagine having a digital compass that not only guides you through this maze, but also reveals the hidden mechanisms of iOS malware previously shrouded in mystery.

Malware 126

Malware Mobile Backups Spyware 126

Security Affairs

DECEMBER 29, 2023

Ukraine’s CERT (CERT-UA) warned of a new phishing campaign by the APT28 group to deploy previously undocumented malware strains. The group employed previously undetected malware such as OCEANMAP, MASEPIE, and STEELHOOK to steal sensitive information from target networks. file classified as MASEPIE.

Phishing 116

Phishing Malware Computers and Electronics Internet 116

Security Affairs

MARCH 3, 2021

A researcher received a $50,000 bug bounty by Microsoft for having reported a vulnerability that could’ve allowed to hijack any account. Microsoft has awarded the security researcher Laxman Muthiyah $50,000 for reporting a vulnerability that could have allowed anyone to hijack users’ accounts without consent.

Accountability 110

Accountability Passwords Encryption Mobile 110

Malwarebytes

JULY 8, 2022

Assuming the attackers don’t just vanish into the night, the business may decide to pay the ransom and recover the encrypted files. The report notes that various initiatives already exist to get people talking about the need for both encryption and backing up. Not having backups leaves victims with very limited options.

Encryption 112

Encryption Backups Cybercrime Ransomware 112

Security Affairs

APRIL 21, 2024

The Akira ransomware has been active since March 2023, the threat actors behind the malware claim to have already hacked multiple organizations in multiple industries, including education, finance, and real estate. The Akira ransomware operators implement a double extortion model by exfiltrating victims’ data before encrypting it.

Ransomware 104

Ransomware Encryption Antivirus VPN 104

Security Affairs

OCTOBER 15, 2020

The Video conferencing platform Zoom announced the implementation of end-to-end encryption (E2EE) and its availability starting next week. The popular Video conferencing platform Zoom announced the availability of the end-to-end encryption (E2EE) starting next week. ” reads the post published by the company. Pierluigi Paganini.

Encryption 101

Encryption Advertising Accountability Hacking 101

Security Boulevard

FEBRUARY 20, 2022

Attackers have always targeted online collaboration tools like Slack and Discord for malware distribution and phishing. Hackers get the added benefit of attacking over Teams or any other similar service if they use SSL encryption which can automatically bypass some security tools which are oblivious to things happening under SSL.

Malware 98

Malware Encryption Security Awareness Phishing 98

Security Affairs

SEPTEMBER 19, 2022

The TeamTNT botnet is a crypto-mining malware operation that has been active since April 2020 and targets Docker installs. In January 2021, the cybercrime gang launched a new campaign targeting Kubernetes environments with the Hildegard malware. “Breaking the cryptographic encryption is considered “Mission: Impossible”.

Encryption 95

Encryption Cybercrime Hacking Malware 95

Malwarebytes

JANUARY 17, 2023

The company didn't provide information on how the malware got onto the laptop. The malware was not detected by our antivirus software. In this case, the account wasn't just protected by a password, it was also protected by some form of two-factor authentication (2FA). We don't just report on threats—we remove them.

Malware 88

Malware Authentication Antivirus Passwords 88

Security Affairs

SEPTEMBER 27, 2021

According to the experts, ERMAC is operated by threat actors behind the BlackRock mobile malware. On August 17, two forum members named “ermac” and “DukeEugene” started advertising the malware. DukeEugene”, posted the following message in his account: “Android botnet ERMAC. 3k$ per month. Pierluigi Paganini.

Banking 80

Banking Malware Mobile Encryption 80

Malwarebytes

AUGUST 3, 2022

Before initialization, the malware effectively suppresses all error reporting by calling SetErrorMode with 0x8007 as parameter. As we will see later, that malware uses multiple threads and so it allocates a global object and assigns a mutex to it to make sure no two clashing operations can take place at the same time. main function.

Malware 112

Malware Encryption Antivirus Architecture 112

Malwarebytes

NOVEMBER 16, 2021

This Android app, purported as a secure messaging application that uses end-to-end encryption, is the latest ruse cybercriminals put upon smartphone users, particularly those based in India, to infect their devices with GravityRAT, a piece of malicious software that is known to spy on people and steal their data. The history of GravityRAT.

Malware 131

Malware Encryption Media Marketing 131

Malwarebytes

APRIL 11, 2022

Security researchers at Cado Security, a cybersecurity forensics company, recently discovered the first publicly-known malware targeting Lambda , the serverless computing platform of Amazon Web Services (AWS). The malware’s name is inspired by the domain the threat actors behind the cryptominer communicate with. Use TLS 1.2

Malware 89

Malware Accountability Encryption Software 89

CyberSecurity Insiders

NOVEMBER 20, 2022

Thousands of financial transactions related to demat accounts were halted on Friday November 18th,2022 as the servers at the Central Depository Services (India) Limited went through a cyber attack of the malware genre. But CDSL had a recovery plan on hand and so immediately triggered it into action, to curtail risks.

Malware 102

Malware Banking Cryptocurrency Cyber Attacks 102

Security Affairs

JUNE 29, 2022

Researchers detailed a new information-stealing malware, dubbed YTStealer, that targets YouTube content creators. Intezer cybersecurity researchers have detailed a new information-stealing malware, dubbed YTStealer, that was developed to steal authentication cookies from YouTube content creators. ” continues the report.

Malware 97

Malware Authentication Software Accountability 97

Krebs on Security

APRIL 20, 2023

Researchers at ESET say this job offer from a phony HSBC recruiter on LinkedIn was North Korean malware masquerading as a PDF file. Mandiant found the compromised 3CX software would download malware that sought out new instructions by consulting encrypted icon files hosted on GitHub. Image: Mandiant.

Malware 287

Malware Software Technology Accountability 287

Security Affairs

SEPTEMBER 19, 2020

The popular encrypted email service Tutanota was hit with a series of DDoS attacks this week targeting its website fist and its DNS providers later. Encrypted email service, Tutanota suffered a series of DDoS attacks that initially targeted the website and later its DNS providers. ” continues the post. Pierluigi Paganini.

DDOS 140

DDOS Encryption DNS Advertising 140

Security Affairs

OCTOBER 31, 2022

In the early afternoon of Friday 12 May 2017, the media broke the news of a global computer security attack carried out through a malicious code capable of encrypting data residing in information systems and demanding a ransom in cryptocurrency to restore them, the Wannacry ransomware. The infection chain. Cryptolocker and exploit components.

Malware 98

Malware Computers and Electronics Encryption Ransomware 98

Security Affairs

NOVEMBER 12, 2020

The popular children’s online playground Animal Jam has suffered a data breach that affected more than 46 million accounts. Animal Jam has suffered a data breach impacting 46 million accounts belonging to children and parents who signed up for the game. . records include the birth year the player entered at account creation 23.9M

Data breaches 120

Data breaches Accountability Passwords Encryption 120

Security Affairs

NOVEMBER 19, 2023

Phobos variants are usually distributed by the SmokeLoader , but in 8Base campaigns, it has the ransomware component embedded in its encrypted payloads. 8base” file extension for encrypted documents, a circumstance that suggested a possible link to the 8Base group or the use of the same code-base for their ransomware.

Ransomware 123

Ransomware Encryption Backups Manufacturing 123

Malwarebytes

FEBRUARY 16, 2021

Today, we are showing readers just what that evolution looked like, in our State of Malware 2021 report. This report provides our most comprehensive analysis of last year’s malware trends, with breakdowns by malware category, malware type, operating system, region, industry, and more.

Malware 122

Malware Scams Spyware Healthcare 122

Security Boulevard

JULY 8, 2022

This Week in Malware we discovered and analyzed multiple malicious PyPI packages that either set up new Remote Desktop user accounts on your Windows computer or steal encrypted Telegram data files from your Telegram Desktop client.

Malware 57

Malware Encryption Accountability 57

Hot for Security

MAY 21, 2021

Security researchers have discovered a new massive spam email campaign designed to push the latest version of STRRAT malware, according to data shared by Microsoft. It turns out that some malware only impersonates a ransomware attack, leaving the files untouched but scaring people with the possibility of a ransomware infection.

Ransomware 122

Ransomware Malware Security Intelligence Encryption 122