Antivirus, Hacking, Malware and Security Defenses

When Your Smart ID Card Reader Comes With Malware

Krebs on Security

MAY 17, 2022

Out of an abundance of caution, Mark submitted Saicoo’s drivers file to Virustotal.com , which simultaneously scans any shared files with more than five dozen antivirus and security products. Virustotal reported that some 43 different security tools detected the Saicoo drivers as malicious.

Malware

Malware Government Internet Internet

Experts link the Black Basta ransomware operation to FIN7 cybercrime gang

Security Affairs

NOVEMBER 3, 2022

Sentinel Labs found evidence that links the Black Basta ransomware gang to the financially motivated hacking group FIN7. Security researchers at Sentinel Labs shared details about Black Basta ‘s TTPs and assess it is highly likely the ransomware operation has ties with FIN7. SecurityAffairs – hacking, FIN7).

Cybercrime

Cybercrime Ransomware Antivirus Malware

Experts found DLL Hijacking issues in Avast, AVG, and Avira solutions

Security Affairs

OCTOBER 23, 2019

Flaws in Avast, AVG, and Avira Antivirus could be exploited by an attacker to load a malicious DLL file to bypass defenses and escalate privileges. “this vulnerability could have been used in order to achieve self-defense bypass, defense evasion, persistence and privilege escalation.” Pierluigi Paganini.

Antivirus

Antivirus Advertising Security Defenses Hacking

How to Prevent Malware: 15 Best Practices for Malware Prevention

eSecurity Planet

OCTOBER 24, 2023

Malware attacks pose a significant risk to both individuals and businesses, infiltrating computer systems, compromising sensitive data and disrupting operations, leading to financial and data loss — and even extortion. Here are 15 important controls and best practices for preventing malware.

Malware

Malware Antivirus Software Passwords

A Ransomware Group Claims to Have Breached the Foxconn Factory

Hacker Combat

JUNE 2, 2022

Malicious hackers claim to have hacked into the network system of the Foxconn Baja factory in Mexico on June 11. After a severe ransomware assault has hit them, they devote the necessary time and money to strengthening their cyber security defenses. The malware’s capacity to increase over a network may be limited.

Ransomware

Ransomware Manufacturing Antivirus Cyber Risk

Dutch police arrested the author of Dryad and Rubella Macro Builders

Security Affairs

JULY 19, 2019

He is suspected of large-scale production and selling of malware.” “The young man offered programs with names like Rubella, Cetan and Dryad, enabling the buyer to include secret code or malware in amongst others Word or Excel files.” The macro might also purposely attempt to bypass endpoint security defenses. .

Malware

Malware Social Engineering Advertising Antivirus

Latest MITRE Endpoint Security Results Show Some Familiar Names on Top

eSecurity Planet

APRIL 5, 2022

MITRE Engenuity has released the latest round of its ATT&CK endpoint security evaluations, and the results show some familiar names leading the pack with the most detections. EDR and EPP tools have been merging over the years, yet they retain distinct functions.

Antivirus

Antivirus Security Defenses Cybersecurity Ransomware

Weekly Vulnerability Recap – November 6, 2023 – Windows Drivers and Exchange Flaws

eSecurity Planet

NOVEMBER 6, 2023

Collaboration: Cybersecurity groups, organizations, and industry stakeholders must work together to exchange knowledge and best practices in order to develop a collective defense against comparable threats. If account credentials are hacked, adding multi-factor authentication can prevent unwanted access.

Software

Software Education Firmware Ransomware

Weekly Vulnerability Recap – October 30, 2023 – Citrix & Cisco Haunted by Vulnerabilities

eSecurity Planet

OCTOBER 30, 2023

Russian Attackers Exploit Zero-day One-Click Exploit in Roundcube Email Servers Type of attack: Cross-site scripting (XSS) attacks by Winter Vivern, a Russian hacking group, use carefully crafted HTML emails to inject arbitrary JavaScript code into the Roundcube email server. Once the server is compromised, the attackers can steal emails.

Authentication

Authentication Mobile Accountability Software

Who’s Behind the GandCrab Ransomware?

Krebs on Security

JULY 8, 2019

But GandCrab far eclipsed the success of competing ransomware affiliate programs largely because its authors worked assiduously to update the malware so that it could evade antivirus and other security defenses. It remains unclear how many individuals were active in the core GandCrab malware development team.

Ransomware

Ransomware Accountability Cybercrime Passwords

Top 7 Cloud Storage Security Issues & Risks (+ Mitigations)

eSecurity Planet

JANUARY 30, 2024

Collaborate with external cloud security specialists or managed service providers to enhance internal capabilities. 8 Common Cloud Storage Security Risks & Mitigations Cloud storage risks include misconfiguration, data breaches, insecure interfaces, DDoS attacks, malware, insider threats, encryption issues, and patching issues.

Risk

Risk DDOS Data breaches Encryption

Top Cybersecurity Companies for 2022

eSecurity Planet

JUNE 7, 2022

As the demand for robust security defense grows by the day, the market for cybersecurity technology has exploded, as well as the number of available solutions. Dashlane Password Manager provides companies with everything they need to onboard new employees, manage permissions and monitor security issues all from one place.

Cybersecurity

Cybersecurity Identity Theft Encryption Antivirus

APT trends report Q1 2021

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi.

Malware

Malware Spyware Government Social Engineering

How to Prevent DNS Attacks: DNS Security Best Practices

eSecurity Planet

DECEMBER 8, 2023

These priority maintenance requirements should also be extended to other security solutions that protect DNS servers such as firewalls and antivirus applications. DNS Cache Poisoning DNS cache poisoning hacks a local DNS server or a DNS resolver to replace IP addresses in the cache. by replacing information in the DNS record.

DNS

DNS DDOS Firewall Architecture

Cyber Security Informer

When Your Smart ID Card Reader Comes With Malware

Experts link the Black Basta ransomware operation to FIN7 cybercrime gang

Trending Sources

Experts found DLL Hijacking issues in Avast, AVG, and Avira solutions

How to Prevent Malware: 15 Best Practices for Malware Prevention

A Ransomware Group Claims to Have Breached the Foxconn Factory

Dutch police arrested the author of Dryad and Rubella Macro Builders

Latest MITRE Endpoint Security Results Show Some Familiar Names on Top

Weekly Vulnerability Recap – November 6, 2023 – Windows Drivers and Exchange Flaws

Weekly Vulnerability Recap – October 30, 2023 – Citrix & Cisco Haunted by Vulnerabilities

Who’s Behind the GandCrab Ransomware?

Top 7 Cloud Storage Security Issues & Risks (+ Mitigations)

Top Cybersecurity Companies for 2022

APT trends report Q1 2021

How to Prevent DNS Attacks: DNS Security Best Practices

Stay Connected