Schneier on Security

NOVEMBER 9, 2018

This is a new thing : The Pentagon has suddenly started uploading malware samples from APTs and other nation-state sources to the website VirusTotal, which is essentially a malware zoo that's used by security pros and antivirus/malware detection engines to gain a better understanding of the threat landscape.

Malware 267

Malware Antivirus Engineering Government 267

Security Affairs

FEBRUARY 17, 2023

Cisco addressed a critical vulnerability in the ClamAV open source antivirus engine that can lead to remote code execution on vulnerable devices. Cisco fixed a critical flaw, tracked as CVE-2023-20032 (CVSS score: 9.8), in the ClamAV open source antivirus engine. The vulnerability affects versions 1.0.0 and earlier.

Antivirus 98

Antivirus Engineering Malware Hacking 98

Schneier on Security

MAY 8, 2019

The VBA stomping is the most powerful feature, because it gets around antivirus programs: VBA stomping abuses a feature which is not officially documented: the undocumented PerformanceCache part of each module stream contains compiled pseudo-code (p-code) for the VBA engine. It runs on Linux, OSX and Windows.

Antivirus 269

Antivirus Engineering Malware 269

Security Affairs

JUNE 21, 2020

. “The new malware tricks victims into bypassing Apple’s built-in macOS security protections, and it uses sneaky tactics in an effort to evade antivirus detection.” “As of Friday, the new malware installer and its payload had a 0/60 detection rate among all antivirus engines on VirusTotal.”

Engineering 145

Engineering Malware Adware Antivirus 145

Krebs on Security

JUNE 7, 2021

In the process of doing so, I encountered a small snag: The FSB’s website said in order to communicate with them securely, I needed to download and install an encryption and virtual private networking (VPN) appliance that is flagged by at least 20 antivirus products as malware. The FSB headquarters at Lubyanka Square, Moscow.

Antivirus 331

Antivirus VPN Encryption Malware 331

The Last Watchdog

JUNE 11, 2025

When I first interviewed him in 2010, “endpoint protection” was still called antivirus. It’s an engine of real-time telemetry — not just threat detection, but evidence of operational resilience. Anscombe has been tracking this evolution for decades. It was about stopping malicious code and blocking known threats.

Insurance 147

Insurance Cyber Insurance Antivirus CISO 147

Security Affairs

AUGUST 18, 2024

Mad Liberator employs social engineering techniques to gain access to the victim’s environment, specifically targeting organizations using remote access tools like Anydesk. This decoy screen, which performs no other actions, is likely to avoid detection by most antivirus software. ” concludes the report.

Social Engineering 144

Social Engineering Engineering Ransomware Cybercrime 144

The Last Watchdog

MAY 1, 2019

Social engineering, especially phishing, continues to trigger the vast majority of breach attempts. Despite billions of dollars spent on the latest, greatest antivirus suites, firewalls and intrusion detection systems, enterprises continue to suffer breaches that can be traced back to the actions of a single, unsuspecting employee.

Social Engineering 166

Social Engineering Engineering Phishing Banking 166

The Hacker News

FEBRUARY 16, 2023

Cisco has rolled out security updates to address a critical flaw reported in the ClamAV open source antivirus engine that could lead to remote code execution on susceptible devices. Tracked as CVE-2023-20032 (CVSS score: 9.8), the issue relates to a case of remote code execution residing in the HFS+ file parser component.

Antivirus 102

Antivirus Software Engineering 102

Security Affairs

DECEMBER 1, 2024

A Case-Control Study to Measure Behavioral Risks of Malware Encounters in Organizations PyPI Python Library “aiocpa” Found Exfiltrating Crypto Keys via Telegram Bot Bootkitty: Analyzing the first UEFI bootkit for Linux Hudson Rock Announces First Comprehensive Infostealers AI Bot: CavalierGPT Gaming Engines: An Undetected Playground for (..)

Malware 71

Malware Social Engineering Antivirus Engineering 71

Webroot

FEBRUARY 22, 2022

According to the latest ISACA State of Security 2021 report , social engineering is the leading cause of compromises experienced by organizations. Findings from the Verizon 2021 Data Breach Investigations Report also point to social engineering as the most common data breach attack method. What does social engineering look like?

Social Engineering 116

Social Engineering Engineering Cybercrime Hacking 116

eSecurity Planet

NOVEMBER 7, 2022

However, the same also goes for antivirus software and other anti-malware solutions. As long as you need employees, you will get spear-phishing campaigns and other social engineering attacks. The post Threat Group Continuously Updates Malware to Evade Antivirus Software appeared first on eSecurityPlanet.

Antivirus 117

Antivirus Software Malware Security Awareness 117

eSecurity Planet

MARCH 3, 2025

Notably, 79% of detections were malware-free a reminder that modern adversaries often bypass traditional antivirus defenses by leveraging innovative, non-malware techniques. The report details how threat actors harness automation, artificial intelligence, and advanced social engineering to scale their operations.

Threat Reports 110

Threat Reports Cybercrime Artificial Intelligence Social Engineering 110

Security Affairs

APRIL 21, 2025

The malware is delivered via social engineering, attackers attempt to trick victims into tapping cards on infected phones. Calls enable social engineering in a Telephone-Oriented Attack Delivery (TOAD) scenario. Analysis of the SuperCard X campaign in Italy revealed custom malware builds tailored for regional use.

Malware 106

Malware Social Engineering Banking Engineering 106

Security Affairs

FEBRUARY 16, 2021

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware. After that, the following files are extracted, namely: Avira.exe : Legitimate injector from Avira Antivirus. In the last few years, many banking trojans developed by Latin American criminals have increased in volume and sophistication.

Antivirus 133

Antivirus Malware Banking Internet 133

SecureWorld News

JANUARY 22, 2025

Limitations of traditional security measures While organizations typically rely on email filters, firewalls, and antivirus software, these solutions often fall short against AI-powered phishing attacks. This dynamic nature allows attackers to bypass traditional defenses and increase their success rates significantly.

Phishing 115

Phishing Threat Detection Social Engineering DNS 115

Webroot

MARCH 3, 2025

Social engineering attacks Social engineering attacks occur when someone uses a fake persona to gain your trust. Antivirus protection Software that protects against viruses and malware. This kind of fraud can disrupt your medical care and cost a lot of money to resolve.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals. He also apparently ran a business called click2dad[.]net

Advertising 275

Advertising Retail Cryptocurrency Cybercrime 275

Adam Levin

JULY 10, 2020

A recent article released by cybersecurity and antivirus firm Bitdefender shows that 8.4 Phishing scams skyrocketed as citizens self-isolated during the lockdown, and social-engineering schemes defrauded Internet users of millions.”. billion records have already been exposed, and that’s only accounting for the first quarter of 2020.

Data breaches 252

Data breaches Social Engineering Antivirus Scams 252

The Last Watchdog

AUGUST 18, 2021

This deal reads like to the epilogue to a book titled The First 20 Years of the Supremely Lucrative Antivirus Market. Way back in 1990, Symantec acquired Norton Utilities and made Norton the heart of its antivirus subscription offering. Also, one of the top ways attackers can target individuals is via social engineering or phishing.

Antivirus 223

Antivirus Marketing Identity Theft Social Engineering 223

The Last Watchdog

OCTOBER 30, 2023

Emerging from traditional antivirus and endpoint protection platforms, EDR rose to the fore in the mid-2010s to improve upon the continuous monitoring of servers, desktops, laptops and mobile devices and put security teams in a better position to mitigate advanced threats, such as APTs and zero-day vulnerabilities.

Engineering 311

Engineering Mobile Internet Internet 311

Malwarebytes

DECEMBER 19, 2024

More and more, threat actors are leveraging the browser to deliver malware in ways that can evade detection from antivirus programs. Social engineering is a core part of these schemes and the tricks we see are sometimes very clever. Interestingly, the same domain ( topsportracing[.]com

Social Engineering 105

Social Engineering Engineering Malware Antivirus 105

Krebs on Security

SEPTEMBER 24, 2020

Scott Caveza , research engineering manager at security firm Tenable , said several samples of malicious.NET executables with the filename ‘SharpZeroLogon.exe’ have been uploaded to VirusTotal, a service owned by Google that scans suspicious files against dozens of antivirus products.

Antivirus 277

Antivirus Security Intelligence Authentication Engineering 277

eSecurity Planet

OCTOBER 22, 2024

Cybercriminals employ social engineering techniques to trick you into believing you must resolve fictitious technical issues. The hallmark of ClickFix campaigns is their clever use of social engineering. By disguising their malicious intents as urgent fixes, these attackers have found a way to deceive even the most cautious users.

Scams 123

Scams Malware Phishing Social Engineering 123

Security Affairs

JULY 26, 2021

Tests conducted by the experts demonstrated how to embed 36.9MB of malware into a 178MB-AlexNet model within 1% accuracy loss, this means that the threat is completely transparent to antivirus engines. 58 antivirus engines were involved in the detection works, and no suspicious was detected. ” states the paper.

Malware 140

Malware Antivirus Artificial Intelligence Engineering 140

The Last Watchdog

AUGUST 17, 2018

No one in cybersecurity refers to “antivirus” protection any more. since the nascent days of the antivirus market, I find in fascinating that the top dozen or so antivirus players have all managed to remain in the game. In the early days, antivirus suites were threat-centric and device-centric.

Antivirus 174

Antivirus Digital transformation Social Engineering Technology 174

Krebs on Security

JULY 18, 2022

These two software are currently unknown to most if not all antivirus companies.” “FUD” in the ad above refers to software and download links that are “Fully UnDetectable” as suspicious or malicious by all antivirus software. The Exe Clean service made malware look like goodware to antivirus products.

VPN 358

VPN Computers and Electronics Antivirus Software 358

The Hacker News

FEBRUARY 24, 2021

New research has uncovered a significant increase in QuickBooks file data theft using social engineering tricks to deliver malware and exploit the accounting software. "A

Social Engineering 138

Social Engineering Antivirus Threat Detection Engineering 138

The Hacker News

MAY 2, 2024

Like antivirus software, vulnerability scans rely on a database of known weaknesses. That’s why websites like VirusTotal exist, to give cyber practitioners a chance to see whether a malware sample is detected by multiple virus scanning engines, but this concept hasn’t existed in the vulnerability management space.

Antivirus 121

Antivirus Engineering Malware Software 121

Security Affairs

MARCH 10, 2025

Using this social engineering trick, threats like stealers, RATs, Trojans, and crypto miners can persist undetected. The discovered infected archives contained an additional executable, with a modified start script tricking victims into disabling antivirus protections. in a temporary folder.

Cryptocurrency 92

Cryptocurrency Malware Social Engineering Antivirus 92

The Hacker News

JANUARY 14, 2023

The CI/CD service CircleCI said the "sophisticated attack" took place on December 16, 2022, and that the malware went undetected by its antivirus

Malware 95

Malware Engineering Antivirus Authentication 95

The Hacker News

JANUARY 2, 2022

The problem relates to a date check failure with the change of the new year and it [is] not a failure of the [antivirus] engine itself," the company said in a blog post.

Antivirus 135

Antivirus Engineering 135

eSecurity Planet

MARCH 30, 2023

Cisco Identity Services Engine (ISE) expands upon a basic Network Access Control (NAC) concept to include modules for network device control and integrated security options. The post Cisco Identity Services Engine (ISE): NAC Product Review appeared first on eSecurityPlanet. It trades on the NASDAQ stock exchange under the symbol CSCO.

Engineering 98

Engineering Wireless Firewall Mobile 98

The Last Watchdog

JANUARY 3, 2023

For instance, phishing, one of the most common, is a social engineering attack used to steal user data. This includes antivirus software, operating systems, and individual apps. There are many ways in which we can be exposed to potential cyberattacks. Sometimes, they will even ask the victim to buy gift cards, which they then redeem.

Risk 203

Risk Cybersecurity Antivirus Phishing 203

Schneier on Security

APRIL 2, 2021

“Guides for cheats will typically ask users to disable or uninstall antivirus software and host firewalls, disable kernel code signing, etc.” . “It is common practice when configuring a cheat program to run it the with the highest system privileges,” the report notes. ” Detailed report.

Software 224

Software Malware Advertising Antivirus 224

Penetration Testing

FEBRUARY 7, 2024

Recently, Cisco revealed critical vulnerabilities lurking within ClamAV, a widely used open-source antivirus engine.

Penetration Testing 111

Penetration Testing Antivirus Engineering 111

Krebs on Security

JUNE 1, 2023

Megatraffer explained that malware purveyors need a certificate because many antivirus products will be far more interested in unsigned software, and because signed files downloaded from the Internet don’t tend to get blocked by security features built into modern web browsers. “Antivirus software trusts signed programs more.

Malware 314

Malware Cybercrime Software Accountability 314