Article, CSO and Malware - Cyber Security Informer

Wave of native IIS malware hits Windows servers

CSO Magazine

AUGUST 11, 2021

Security researchers warn that multiple groups are compromising Windows web servers and are deploying malware programs that are designed to function as extensions for Internet Information Services (IIS). How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters !

Malware

Malware CSO Internet Internet

Gootkit malware creators expand their distribution platform

CSO Magazine

MARCH 3, 2021

The cybercriminal gang behind the Gootkit Trojan is expanding its malware distribution activities and is improving its multi-stage distribution platform to deliver additional threats. How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! Sign up for CSO newsletters ! ].

Malware

Malware CSO Ransomware

Siloscape malware escapes Windows containers to backdoor Kubernetes clusters

CSO Magazine

JUNE 9, 2021

Malware attacks against cloud containers are nothing new, but these attacks have primarily focused on Linux deployments because they are the most common and where containers were born. How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! Sign up for CSO newsletters ! ]

Malware

Malware CSO

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

APT group hits IIS web servers with deserialization flaws and memory-resident malware

CSO Magazine

JULY 27, 2021

A sophisticated, likely government-sponsored threat actor has been compromising major public and private organizations over the past year by exploiting deserialization flaws in public-facing ASP.NET applications to deploy fileless malware. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

Malware

Malware CSO Internet Internet

Over 60,000 Android apps infected with adware-pushing malware

CSO Magazine

JUNE 7, 2023

Bitdefender has uncovered a hidden malware campaign living undetected on mobile devices worldwide for more than six months. To read this article in full, please click here The campaign is designed to push adware to Android devices with the purpose of driving revenue.

Adware

Adware Malware Banking Mobile

4 most dangerous emerging ransomware threat groups to watch

CSO Magazine

AUGUST 24, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here These are AvosLocker, Hive Ransomware, HelloKitty, and LockBit 2.0.

Ransomware

Ransomware CSO Malware

Ransomware recovery: 8 steps to successfully restore from backup

CSO Magazine

AUGUST 12, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here Part of the reason is the lack of backups—specifically, the lack of usable backups.

Backups

Backups Ransomware CSO Malware

REvil gang suddenly goes silent leaving victims unable to recover systems

CSO Magazine

JULY 13, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

CSO

CSO Ransomware Government Malware

7 steps to protect against ransomware-related lawsuits

CSO Magazine

AUGUST 18, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Is misinformation the newest malware?

CSO Magazine

MAY 1, 2023

At this year's RSA Conference, information security experts appeared on a panel entitled "Misinformation Is the New Malware" to hammer out the distinctions. To read this article in full, please click here

Malware

Malware Ransomware Information Security Cybersecurity

9 types of computer virus and how they do their dirty work

CSO Magazine

JUNE 10, 2022

The human mind loves to categorize things, and malware is no exception. To read this article in full, please click here

Adware

Adware CSO Malware Ransomware

Unique TTPs link Hades ransomware to new threat group

CSO Magazine

JUNE 15, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Yes, the FBI held back REvil ransomware keys

CSO Magazine

SEPTEMBER 22, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here What were they thinking? What were they protecting?

Ransomware

Ransomware CSO Malware

New DownEx malware campaign targets Central Asia

CSO Magazine

MAY 11, 2023

A previously undocumented malware campaign called DownEx has been observed actively targeting government institutions in Central Asia for cyberespionage , according to a report by Bitdefender. To read this article in full, please click here Researchers observed another attack in Afghanistan.

Malware

Malware Government

TrickBot returns with campaign against legal and insurance firms

CSO Magazine

JANUARY 29, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ] To read this article in full, please click here The latest one, observed by researchers this month, targeted legal and insurance companies. [

Insurance

Insurance CSO Malware

Critical flaw in Atlassian Confluence actively exploited

CSO Magazine

SEPTEMBER 3, 2021

Some of the attacks deploy cryptocurrency mining malware, but Atlassian products have also been targeted in the past by cyberespionage groups. To read this article in full, please click here Multiple proofs-of-concept have been published publicly demonstrating how to exploit this vulnerability."

CSO

CSO Cryptocurrency Malware

Hard-to-detect malware loader distributed via AI-generated YouTube videos

CSO Magazine

APRIL 18, 2023

Security researchers warn of a new malware loader that's used as part of the infection chain for the Aurora information stealer. The Aurora infostealer is written in Go and is operated as a malware-as-a-service platform that's advertised on Russian-language cybercrime forums. To read this article in full, please click here

Malware

Malware Cryptocurrency Cybercrime Advertising

Biden sanctions Suex cryptocurrency exchange to stifle ransomware payments

CSO Magazine

SEPTEMBER 21, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Cryptocurrency

Cryptocurrency Ransomware CSO Marketing

Biden Administration announces flurry of new anti-ransomware efforts

CSO Magazine

JULY 16, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Guerrilla malware is preinfected on 8.9 million Android devices, Trend Micro says

CSO Magazine

MAY 19, 2023

Cybercrime gang Lemon Group has managed to get malware known as Guerrilla preinstalled on about 8.9 To read this article in full, please click here million Android-based smartphones, watches, TVs, and TV boxes globally, according to Trend Micro.

Malware

Malware Cybercrime Mobile Advertising

Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation

CSO Magazine

OCTOBER 13, 2021

Get the latest from CSO by signing up for our newsletters. ]. To read this article in full, please click here The attack campaigns targeted IT companies, defense contractors and diplomatic entities. Discover Windows 11's best security features. |

CSO

CSO Malware

Traditional malware increasingly takes advantage of ChatGPT for attacks

CSO Magazine

JUNE 6, 2023

Traditional malware techniques are increasingly taking advantage of interest in ChatGPT and other generative AI programs, according to a Palo Alto Networks report on malware trends. To read this article in full, please click here

Malware

Amazon Sidewalk highlights network security visibility risks consumer services pose

CSO Magazine

AUGUST 17, 2021

The research also discovered a novel use of Houdini malware to spoof devices and exfiltrate data within the user agent field, a method often undetected by legacy security systems. Get the latest from CSO by signing up for our newsletters. ] Get the latest from CSO by signing up for our newsletters. ]

Consumer Services

Consumer Services Network Security Risk CSO

Iranian cyberspies deploy new malware implant on Microsoft Exchange Servers

CSO Magazine

APRIL 26, 2023

A cyberespionage group believed to be associated with the Iranian government has been infecting Microsoft Exchange Servers with a new malware implant dubbed BellaCiao that acts as a dropper for additional payloads. The malware uses DNS queries to receive commands from attackers encoded into IP addresses.

Malware

Malware DNS Government

APT29 targets Active Directory Federation Services with stealthy backdoor

CSO Magazine

SEPTEMBER 30, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ]. In a new report , Microsoft attributes the malware program called FoggyWeb to a group the company tracks as NOBELIUM, but which is also known in the security industry as APT29 or Cozy Bear.

CSO

CSO Malware Government Software

Russian cyberspies hit NATO and EU organizations with new malware toolset

CSO Magazine

APRIL 13, 2023

The Polish government warns that a cyberespionage group linked to Russia's intelligence services is targeting diplomatic and foreign ministries from NATO and EU member states in an ongoing campaign that uses previously undocumented malware payloads. To read this article in full, please click here

Malware

Malware Government Software

Researchers find new ICS malware toolkit designed to cause electric power outages

CSO Magazine

MAY 26, 2023

A new addition to this arsenal is a malware toolkit that seems to have been developed for red-teaming exercises by a Russian cybersecurity company. COSMICENERGY is the latest example of specialized OT malware capable of causing cyber physical impacts, which are rarely discovered or disclosed," the Mandian researchers said in their report.

Malware

Malware Engineering Technology Cybersecurity

Authentication bypass allows complete takeover of Modicon PLCs used across industries

CSO Magazine

JULY 12, 2021

According to researchers from security firm Armis, who found and reported the vulnerability, attackers with network access to impacted controllers could exploit the issue to install malware that alters the operation of the controllers and hides those malicious changes from the workstations and operators managing them.

Authentication

Authentication Energy and Utilities CSO Malware

Chinese hackers launch Linux variant of PingPull malware

CSO Magazine

APRIL 27, 2023

Chinese state-sponsored threat actor Alloy Taurus has introduced a new variant of PingPull malware , designed to target Linux systems, Palo Alto Networks said in its research. To read this article in full, please click here Along with the new variant, another backdoor called Sword2033 was also identified by the researchers.

Malware

Malware Telecommunications Government

Best new Windows 10 security features: Improvements to Intune, Windows Defender Application Guard

CSO Magazine

JUNE 15, 2021

Learn how to identify, block and remove malware from Windows PCs. | Get the latest from CSO by signing up for our newsletters. ]. To read this article in full, please click here Many of those changes will allow you to improve your security posture and offer more security choices. Windows 10 21H1.

CSO

CSO Malware

Iranian APT targets aerospace and telecom firms with stealthy ShellClient Trojan

CSO Magazine

OCTOBER 6, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ] To read this article in full, please click here The goal of the attacks is the theft of information about the victims' infrastructure, technology and critical assets. [

CSO

CSO Technology Malware

Malware disguised as ChatGPT apps are being used to lure victims, Meta says

CSO Magazine

MAY 4, 2023

Facebook's parent company, Meta, has issued a warning that hackers are taking advantage of people’s interest in ChatGP and other generative AI applications to trick them into installing malware that pretends to provide AI functionality. To read this article in full, please click here

Malware

Malware Media Accountability Internet

11 infamous malware attacks: The first and the worst

CSO Magazine

JUNE 9, 2022

Viruses and other malware spreading for sinister or baffling reasons has been a staple of cyberpunk novels and real-life news stories alike for decades. To read this article in full, please click here And in truth, there have been computer viruses on the internet since before it was the internet.

Malware

Malware Internet Internet

LockFile ransomware uses intermittent encryption to evade detection

CSO Magazine

AUGUST 30, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Encryption

Encryption Ransomware CSO Antivirus

Law enforcement takes over Emotet, one of the biggest botnets

CSO Magazine

JANUARY 27, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ] To read this article in full, please click here Whether this disruption to the botnet will be permanent remains to be seen, but it's a promising development according to security experts. [

CSO

CSO Malware

New cryptomining malware targets AWS Lambda

CSO Magazine

APRIL 6, 2022

Malware authors are keeping with the times and when it comes to server-oriented malware. To read this article in full, please click here Specifically, attackers will adopt the same technologies their target organizations are using.

Malware

Malware Cryptocurrency Technology Software

Iron Tiger updates malware to target Linux platform

CSO Magazine

MARCH 3, 2023

Iron Tiger, an advanced persistent threat ( APT ) group, has updated their SysUpdate malware to include new features and add malware infection support for the Linux platform, according to a report by Trend Micro. To read this article in full, please click here

Malware

Android-based banking Trojan Nexus now available as malware-as-a-service

CSO Magazine

MARCH 24, 2023

First observed in June 2022 as a variant of SOVA, another Android banking Trojan, Nexus has since improved targeting capabilities and is available via a malware-as-a-service (MaaS) program for $3000 a month, and allows other attackers to rent or subscribe to the malware for personal attacks.

Banking

Banking Malware Cryptocurrency Accountability

Malware builder uses fresh tactics to hit victims with Agent Tesla RAT

CSO Magazine

SEPTEMBER 30, 2022

A recently discovered malware builder sold on the dark web , Quantum Builder, is being used in a new campaign featuring fresh tactics to deliver the Agent Tesla.NET-based keylogger and remote access trojan (RAT), according to an alert issued by the ThreatLabz research unit of cybersecurity company Zscaler.

Malware

Malware Cybersecurity

15 open source GitHub projects for security pros

CSO Magazine

APRIL 27, 2021

Whether you are a sysadmin, a threat intel analyst, a malware researcher, forensics expert, or even a software developer looking to build secure software, these 15 free tools from GitHub or GitLab can easily fit into your day-to-day work activities and provide added advantages. Get the latest from CSO by signing up for our newsletters. ].

CSO

CSO Malware Software

White House international ransomware initiative outlines hopes and challenges

CSO Magazine

OCTOBER 18, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here Present were ministers and representatives from more than 30 countries and the European Union.

Ransomware

Ransomware CSO Malware

Spike in encrypted malware poses dual challenge for CISOs

CSO Magazine

NOVEMBER 16, 2021

Without proper inspection, encrypted data can be a significant security threat as the volume of malware in encrypted traffic grows. That’s the takeaway from two sets of new research into the threat malware hidden in encrypted traffic poses to organizations. To read this article in full, please click here (Insider Story)

Encryption

Encryption Malware CISO

The Prometheus traffic direction system is a major player in malware distribution

CSO Magazine

JANUARY 19, 2022

There are the malware developers, the access brokers, the spammers, the private information sellers, the botnet operators, the malvertizers and more. One service that is often overlooked but still plays an important role in malware delivery are so-called traffic direction systems (TDS).

Malware

Malware Cybercrime Phishing Ransomware

Recorded Future closes acquisition of malware analysis firm Hatching

CSO Magazine

JULY 8, 2022

The addition of Hatching—whose specialty is malware sandboxing and analysis—broadens the company's portfolio substantially. To read this article in full, please click here

Malware

Malware Cybersecurity

Wave of native IIS malware hits Windows servers

Gootkit malware creators expand their distribution platform

Webinars

Trending Sources

Siloscape malware escapes Windows containers to backdoor Kubernetes clusters

Webinars

APT group hits IIS web servers with deserialization flaws and memory-resident malware

Over 60,000 Android apps infected with adware-pushing malware

4 most dangerous emerging ransomware threat groups to watch

Ransomware recovery: 8 steps to successfully restore from backup

REvil gang suddenly goes silent leaving victims unable to recover systems

7 steps to protect against ransomware-related lawsuits

Is misinformation the newest malware?

9 types of computer virus and how they do their dirty work

Unique TTPs link Hades ransomware to new threat group

Yes, the FBI held back REvil ransomware keys

New DownEx malware campaign targets Central Asia

TrickBot returns with campaign against legal and insurance firms

Critical flaw in Atlassian Confluence actively exploited

Hard-to-detect malware loader distributed via AI-generated YouTube videos

Biden sanctions Suex cryptocurrency exchange to stifle ransomware payments

Biden Administration announces flurry of new anti-ransomware efforts

Guerrilla malware is preinfected on 8.9 million Android devices, Trend Micro says

Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation

Traditional malware increasingly takes advantage of ChatGPT for attacks

Amazon Sidewalk highlights network security visibility risks consumer services pose

Iranian cyberspies deploy new malware implant on Microsoft Exchange Servers

APT29 targets Active Directory Federation Services with stealthy backdoor

Russian cyberspies hit NATO and EU organizations with new malware toolset

Researchers find new ICS malware toolkit designed to cause electric power outages

Authentication bypass allows complete takeover of Modicon PLCs used across industries

Chinese hackers launch Linux variant of PingPull malware

Best new Windows 10 security features: Improvements to Intune, Windows Defender Application Guard

Iranian APT targets aerospace and telecom firms with stealthy ShellClient Trojan

Malware disguised as ChatGPT apps are being used to lure victims, Meta says

11 infamous malware attacks: The first and the worst

LockFile ransomware uses intermittent encryption to evade detection

Law enforcement takes over Emotet, one of the biggest botnets

New cryptomining malware targets AWS Lambda

Iron Tiger updates malware to target Linux platform

Android-based banking Trojan Nexus now available as malware-as-a-service

Malware builder uses fresh tactics to hit victims with Agent Tesla RAT

15 open source GitHub projects for security pros

White House international ransomware initiative outlines hopes and challenges

Spike in encrypted malware poses dual challenge for CISOs

The Prometheus traffic direction system is a major player in malware distribution

Recorded Future closes acquisition of malware analysis firm Hatching

Stay Connected