Schneier on Security

MAY 8, 2019

The VBA stomping is the most powerful feature, because it gets around antivirus programs: VBA stomping abuses a feature which is not officially documented: the undocumented PerformanceCache part of each module stream contains compiled pseudo-code (p-code) for the VBA engine. It runs on Linux, OSX and Windows.

Antivirus 273

Antivirus Engineering Malware 273

Security Affairs

FEBRUARY 17, 2023

Cisco addressed a critical vulnerability in the ClamAV open source antivirus engine that can lead to remote code execution on vulnerable devices. Cisco fixed a critical flaw, tracked as CVE-2023-20032 (CVSS score: 9.8), in the ClamAV open source antivirus engine. The vulnerability affects versions 1.0.0 and earlier.

Antivirus 98

Antivirus Engineering Malware Hacking 98

Security Affairs

JUNE 21, 2020

. “The new malware tricks victims into bypassing Apple’s built-in macOS security protections, and it uses sneaky tactics in an effort to evade antivirus detection.” “As of Friday, the new malware installer and its payload had a 0/60 detection rate among all antivirus engines on VirusTotal.”

Engineering 145

Engineering Malware Adware Antivirus 145

Krebs on Security

JUNE 7, 2021

In the process of doing so, I encountered a small snag: The FSB’s website said in order to communicate with them securely, I needed to download and install an encryption and virtual private networking (VPN) appliance that is flagged by at least 20 antivirus products as malware. The FSB headquarters at Lubyanka Square, Moscow.

Antivirus 329

Antivirus VPN Encryption Malware 329

Security Affairs

MAY 24, 2025

law firms for 2 years using callback phishing and social engineering extortion tactics. law firms using phishing and social engineering. The group campaigns leave minimal traces and often evade antivirus detection by using legitimate remote access tools. FBI warns Silent Ransom Group has targeted U.S.

Social Engineering 72

Social Engineering Antivirus Phishing Engineering 72

Security Affairs

AUGUST 18, 2024

Mad Liberator employs social engineering techniques to gain access to the victim’s environment, specifically targeting organizations using remote access tools like Anydesk. This decoy screen, which performs no other actions, is likely to avoid detection by most antivirus software. ” concludes the report.

Social Engineering 144

Social Engineering Engineering Ransomware Cybercrime 144

The Last Watchdog

MAY 1, 2019

Social engineering, especially phishing, continues to trigger the vast majority of breach attempts. Despite billions of dollars spent on the latest, greatest antivirus suites, firewalls and intrusion detection systems, enterprises continue to suffer breaches that can be traced back to the actions of a single, unsuspecting employee.

Social Engineering 166

Social Engineering Engineering Phishing Banking 166

The Hacker News

FEBRUARY 16, 2023

Cisco has rolled out security updates to address a critical flaw reported in the ClamAV open source antivirus engine that could lead to remote code execution on susceptible devices. Tracked as CVE-2023-20032 (CVSS score: 9.8), the issue relates to a case of remote code execution residing in the HFS+ file parser component.

Antivirus 101

Antivirus Software Engineering 101

Webroot

FEBRUARY 22, 2022

According to the latest ISACA State of Security 2021 report , social engineering is the leading cause of compromises experienced by organizations. Findings from the Verizon 2021 Data Breach Investigations Report also point to social engineering as the most common data breach attack method. What does social engineering look like?

Social Engineering 116

Social Engineering Engineering Cybercrime Hacking 116

Security Affairs

DECEMBER 1, 2024

A Case-Control Study to Measure Behavioral Risks of Malware Encounters in Organizations PyPI Python Library “aiocpa” Found Exfiltrating Crypto Keys via Telegram Bot Bootkitty: Analyzing the first UEFI bootkit for Linux Hudson Rock Announces First Comprehensive Infostealers AI Bot: CavalierGPT Gaming Engines: An Undetected Playground for (..)

Malware 69

Malware Social Engineering Antivirus Engineering 69

eSecurity Planet

NOVEMBER 7, 2022

However, the same also goes for antivirus software and other anti-malware solutions. As long as you need employees, you will get spear-phishing campaigns and other social engineering attacks. The post Threat Group Continuously Updates Malware to Evade Antivirus Software appeared first on eSecurityPlanet.

Antivirus 118

Antivirus Software Malware Security Awareness 118

eSecurity Planet

MARCH 3, 2025

Notably, 79% of detections were malware-free a reminder that modern adversaries often bypass traditional antivirus defenses by leveraging innovative, non-malware techniques. The report details how threat actors harness automation, artificial intelligence, and advanced social engineering to scale their operations.

Threat Reports 112

Threat Reports Cybercrime Artificial Intelligence Social Engineering 112

Security Affairs

APRIL 21, 2025

The malware is delivered via social engineering, attackers attempt to trick victims into tapping cards on infected phones. Calls enable social engineering in a Telephone-Oriented Attack Delivery (TOAD) scenario. Analysis of the SuperCard X campaign in Italy revealed custom malware builds tailored for regional use.

Malware 104

Malware Social Engineering Banking Engineering 104

Security Affairs

FEBRUARY 16, 2021

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware. After that, the following files are extracted, namely: Avira.exe : Legitimate injector from Avira Antivirus. In the last few years, many banking trojans developed by Latin American criminals have increased in volume and sophistication.

Antivirus 131

Antivirus Malware Banking Internet 131

Webroot

MARCH 3, 2025

Social engineering attacks Social engineering attacks occur when someone uses a fake persona to gain your trust. Antivirus protection Software that protects against viruses and malware. This kind of fraud can disrupt your medical care and cost a lot of money to resolve.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

SecureWorld News

JANUARY 22, 2025

Limitations of traditional security measures While organizations typically rely on email filters, firewalls, and antivirus software, these solutions often fall short against AI-powered phishing attacks. This dynamic nature allows attackers to bypass traditional defenses and increase their success rates significantly.

Phishing 113

Phishing Threat Detection Social Engineering DNS 113

Adam Levin

JULY 10, 2020

A recent article released by cybersecurity and antivirus firm Bitdefender shows that 8.4 Phishing scams skyrocketed as citizens self-isolated during the lockdown, and social-engineering schemes defrauded Internet users of millions.”. billion records have already been exposed, and that’s only accounting for the first quarter of 2020.

Data breaches 252

Data breaches Social Engineering Antivirus Scams 252

Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals. He also apparently ran a business called click2dad[.]net

Retail 270

Retail Advertising Cryptocurrency Cybercrime 270

The Last Watchdog

AUGUST 18, 2021

This deal reads like to the epilogue to a book titled The First 20 Years of the Supremely Lucrative Antivirus Market. Way back in 1990, Symantec acquired Norton Utilities and made Norton the heart of its antivirus subscription offering. Also, one of the top ways attackers can target individuals is via social engineering or phishing.

Antivirus 223

Antivirus Marketing Identity Theft Social Engineering 223

The Last Watchdog

OCTOBER 30, 2023

Emerging from traditional antivirus and endpoint protection platforms, EDR rose to the fore in the mid-2010s to improve upon the continuous monitoring of servers, desktops, laptops and mobile devices and put security teams in a better position to mitigate advanced threats, such as APTs and zero-day vulnerabilities.

Engineering 311

Engineering Mobile Internet Internet 311

eSecurity Planet

OCTOBER 22, 2024

Cybercriminals employ social engineering techniques to trick you into believing you must resolve fictitious technical issues. The hallmark of ClickFix campaigns is their clever use of social engineering. By disguising their malicious intents as urgent fixes, these attackers have found a way to deceive even the most cautious users.

Scams 124

Scams Malware Phishing Social Engineering 124

Krebs on Security

SEPTEMBER 24, 2020

Scott Caveza , research engineering manager at security firm Tenable , said several samples of malicious.NET executables with the filename ‘SharpZeroLogon.exe’ have been uploaded to VirusTotal, a service owned by Google that scans suspicious files against dozens of antivirus products.

Antivirus 276

Antivirus Security Intelligence Engineering Authentication 276

Malwarebytes

DECEMBER 19, 2024

More and more, threat actors are leveraging the browser to deliver malware in ways that can evade detection from antivirus programs. Social engineering is a core part of these schemes and the tricks we see are sometimes very clever. Interestingly, the same domain ( topsportracing[.]com

Social Engineering 102

Social Engineering Engineering Malware Antivirus 102

The Last Watchdog

AUGUST 17, 2018

No one in cybersecurity refers to “antivirus” protection any more. since the nascent days of the antivirus market, I find in fascinating that the top dozen or so antivirus players have all managed to remain in the game. In the early days, antivirus suites were threat-centric and device-centric.

Antivirus 174

Antivirus Digital transformation Social Engineering Technology 174

Security Affairs

JULY 26, 2021

Tests conducted by the experts demonstrated how to embed 36.9MB of malware into a 178MB-AlexNet model within 1% accuracy loss, this means that the threat is completely transparent to antivirus engines. 58 antivirus engines were involved in the detection works, and no suspicious was detected. ” states the paper.

Malware 138

Malware Antivirus Artificial Intelligence Engineering 138

The Hacker News

FEBRUARY 24, 2021

New research has uncovered a significant increase in QuickBooks file data theft using social engineering tricks to deliver malware and exploit the accounting software. "A

Social Engineering 136

Social Engineering Antivirus Threat Detection Engineering 136

Krebs on Security

JULY 18, 2022

These two software are currently unknown to most if not all antivirus companies.” “FUD” in the ad above refers to software and download links that are “Fully UnDetectable” as suspicious or malicious by all antivirus software. The Exe Clean service made malware look like goodware to antivirus products.

VPN 356

VPN Computers and Electronics Antivirus Software 356

The Hacker News

MAY 2, 2024

Like antivirus software, vulnerability scans rely on a database of known weaknesses. That’s why websites like VirusTotal exist, to give cyber practitioners a chance to see whether a malware sample is detected by multiple virus scanning engines, but this concept hasn’t existed in the vulnerability management space.

Antivirus 117

Antivirus Engineering Malware Software 117

The Hacker News

JANUARY 14, 2023

The CI/CD service CircleCI said the "sophisticated attack" took place on December 16, 2022, and that the malware went undetected by its antivirus

Malware 95

Malware Engineering Antivirus Authentication 95

Security Affairs

MARCH 10, 2025

Using this social engineering trick, threats like stealers, RATs, Trojans, and crypto miners can persist undetected. The discovered infected archives contained an additional executable, with a modified start script tricking victims into disabling antivirus protections. in a temporary folder.

Cryptocurrency 90

Cryptocurrency Malware Social Engineering Antivirus 90

The Hacker News

JANUARY 2, 2022

The problem relates to a date check failure with the change of the new year and it [is] not a failure of the [antivirus] engine itself," the company said in a blog post.

Antivirus 130

Antivirus Engineering 130

eSecurity Planet

MARCH 30, 2023

Cisco Identity Services Engine (ISE) expands upon a basic Network Access Control (NAC) concept to include modules for network device control and integrated security options. The post Cisco Identity Services Engine (ISE): NAC Product Review appeared first on eSecurityPlanet. It trades on the NASDAQ stock exchange under the symbol CSCO.

Engineering 98

Engineering Wireless Firewall Mobile 98

The Last Watchdog

JANUARY 3, 2023

For instance, phishing, one of the most common, is a social engineering attack used to steal user data. This includes antivirus software, operating systems, and individual apps. There are many ways in which we can be exposed to potential cyberattacks. Sometimes, they will even ask the victim to buy gift cards, which they then redeem.

Risk 203

Risk Cybersecurity Antivirus Phishing 203

Schneier on Security

APRIL 2, 2021

“Guides for cheats will typically ask users to disable or uninstall antivirus software and host firewalls, disable kernel code signing, etc.” . “It is common practice when configuring a cheat program to run it the with the highest system privileges,” the report notes. ” Detailed report.

Software 228

Software Malware Advertising Antivirus 228

Penetration Testing

FEBRUARY 7, 2024

Recently, Cisco revealed critical vulnerabilities lurking within ClamAV, a widely used open-source antivirus engine.

Penetration Testing 111

Penetration Testing Antivirus Engineering 111

Penetration Testing

FEBRUARY 9, 2024

A proof-of-concept (PoC) for CVE-2024-20328, a critical vulnerability in ClamAV, a popular open-source antivirus engine, that allows arbitrary code execution, was published. The vulnerability exploits the unsuspecting nature of ClamAV’s VirusEvent feature.

Penetration Testing 111

Penetration Testing Antivirus Engineering 111

Bleeping Computer

FEBRUARY 23, 2023

Security researchers discovered a cryptomining operation targeting macOS with a malicious version of Final Cut Pro that remains largely undetected by antivirus engines. [.]

Antivirus 99

Antivirus Malware Engineering 99