Antivirus, Architecture, Blog and Information Security

Antivirus

Architecture

Blog

Information Security

Experts spotted Syslogk, a Linux rootkit under development

Security Affairs

JUNE 14, 2022

Researchers from antivirus firm Avast spotted a new Linux rootkit, dubbed ‘Syslogk,’ that uses specially crafted “magic packets” to activate a dormant backdoor on the device. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. Pierluigi Paganini.

Malware

Malware System Administration Antivirus Architecture

Lemon Group gang pre-infected 9 million Android devices for fraudulent activities

Security Affairs

MAY 19, 2023

The most interesting characteristic of the Triada Trojan apart is its modular architecture, which gives it theoretically a wide range of abilities. In March 2018, security researchers at Antivirus firm Dr. Web discovered that 42 models of low-cost Android smartphones are shipped with the Android.Triada.231 231 banking malware.

Mobile

Mobile Advertising Malware Cybercrime

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

Security Affairs

FEBRUARY 16, 2021

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware. As mentioned, in general, this trojan was developed using the same architecture of other Latin American trojans, and the main steps of the infection chain are described below and analyzed in-depth during the next sections of this article.

Antivirus

Antivirus Malware Banking Internet

Woody RAT: A new feature-rich malware spotted in the wild

Malwarebytes

AUGUST 3, 2022

This blog post was authored by Ankur Saini and Hossein Jazi. In this blog post, we will analyze Woody Rat’s distribution methods, capabilities as well as communication protocol. The threat actor has left some debugging information including a pdb path from which we derived and picked a name for this new Rat: Debug Information.

Malware

Malware Encryption Antivirus Architecture

Woody RAT: A new feature-rich malware spotted in the wild

Malwarebytes

AUGUST 3, 2022

This blog post was authored by Ankur Saini and Hossein Jazi. In this blog post, we will analyze Woody Rat's distribution methods, capabilities as well as communication protocol. The used lure is in Russian is called " Information security memo " which provide security practices for passwords, confidential information, etc.

Malware

Malware Encryption Antivirus Architecture

A new trojan Lampion targets Portugal

Security Affairs

DECEMBER 29, 2019

This is a clear signal that most of the antivirus engines don’t detect yet the malware signature. The file is extremely large (32 MB), with a lot of junk allowing, thus, to evade antivirus engines as a result. He is also a founding member and Pentester at CSIRT.UBI and founder of the security computer blog seguranca–informatica.pt.

Malware

Malware Internet Internet Antivirus

Experts spotted P2P worm spreading Crypto-Miners in the wild

Security Affairs

JULY 23, 2019

Code Snippet 3: Choose of the files to copy whether the target architecture is x86 or x64. Technical details, including IoCs and Yara Rules, are available in the analysis published in the Yoroi blog. Its content is minimal and quickly redirect the execution to a small batch file, “installer.bat” contained in the same folder.

Malware

Malware Advertising Antivirus Architecture

New ransomware trends in 2023

SecureList

MAY 11, 2023

A few months after last year’s blog post came out, we stumbled across a new multi-platform ransomware family, which targeted both Linux and Windows. Later, we encountered a version of BlackBasta that targeted ESXi environments, and the most recent version that we found supported the x64 architecture. We named it RedAlert/N13V.

Ransomware

Ransomware Malware Architecture Telecommunications

Using Proactive Intelligence Against Adversary Infrastructure

Security Boulevard

FEBRUARY 7, 2024

But in the wake of the attack, manychief information security officers (CISOs) realized that PDNS was the answer to early detection and resiliency against similar attacks simply because log4j was surprisingly easy to detect at a DNS level. AV-TEST has proprietary mechanisms for understanding and scoring security solution efficacy.

DNS

DNS Architecture Marketing Cyber threats

New BotenaGo variant specifically targets Lilin security camera DVR devices

Security Affairs

APRIL 19, 2022

BotenaGo was written in Golang (Go) and at the time of the report published by the experts, it had a low antivirus (AV) detection rate (6/62). file downloads Mirai payloads compiled for multiple architectures and attempts to execute them on the compromised device. In the next stage of the attack, the wget.sh To nominate, please visit:?

Malware

Malware IoT Antivirus Architecture

Cyber Security Informer

Experts spotted Syslogk, a Linux rootkit under development

Lemon Group gang pre-infected 9 million Android devices for fraudulent activities

Trending Sources

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

Woody RAT: A new feature-rich malware spotted in the wild

Woody RAT: A new feature-rich malware spotted in the wild

A new trojan Lampion targets Portugal

Experts spotted P2P worm spreading Crypto-Miners in the wild

New ransomware trends in 2023

Using Proactive Intelligence Against Adversary Infrastructure

New BotenaGo variant specifically targets Lilin security camera DVR devices

Stay Connected