Appknox

FEBRUARY 28, 2024

Mobile Security Framework (MobSF), launched by OWASP in 2015, is a partially automated, open-source, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static, dynamic, and malware analysis.

Mobile 52

Mobile Malware Penetration Testing 52

Approachable Cyber Threats

FEBRUARY 23, 2024

Adaptive Malware - A Shape-Shifting Nemesis: Meet the shape-shifting nemesis… adaptive malware. Fueled by AI, this breed of malware dynamically alters its code and behavior, a perpetual game of cat and mouse with conventional detection methods. Movie Fantasy Meets Reality: Researchers at HYAS Infosec, Inc.

Cybersecurity 104

Cybersecurity Artificial Intelligence Malware Phishing 104

Security Affairs

AUGUST 28, 2023

.” Below is a watch video that shows this attack technique: The JPCERT experts say that the OLEVBA analysis tool for malicious Word files can be used to detect malicious files crafted to carry out this attack technique However, popular PDF analysis tools like ‘pdfid’ may be not able to detect the malicious file.

Malware 118

Malware Hacking Information Security 118

SecureList

JANUARY 16, 2024

Introduction In the ever-evolving landscape of mobile security, hunting for malware in the iOS ecosystem is akin to navigating a labyrinth with invisible walls. Imagine having a digital compass that not only guides you through this maze, but also reveals the hidden mechanisms of iOS malware previously shrouded in mystery.

Malware 116

Malware Mobile Backups Spyware 116

Lenny Zeltser

JANUARY 6, 2021

Malware analysis sits at the intersection of incident response, forensics, system and network administration, security monitoring, and software engineering. As someone who’s helped thousands of security professionals learn how to analyze malware at SANS Institute , I have a few tips for how you can get started.

Malware 145

Malware Software Engineering Information Security 145

The Last Watchdog

NOVEMBER 14, 2023

Obama’s clarion call led to the passage of the Cybersecurity Information Sharing Act , the creation of Information Sharing and Analysis Organizations ( ISAOs ) and the jump-starting of several private-sector sharing consortiums. From this command center perspective, real-world strategic analysis happens continuously and in real time.

Cyber threats 260

Cyber threats Ransomware Internet Internet 260

Dark Reading

MARCH 14, 2018

Researchers at Black Hat Asia will demonstrate a new framework they created for catching and studying Apple MacOS malware.

Malware 68

Malware 68

Security Affairs

FEBRUARY 1, 2024

Mandiant spotted new malware used by a China-linked threat actor UNC5221 targeting Ivanti Connect Secure VPN and Policy Secure devices. Mandiant researchers discovered new malware employed by a China-linked APT group known as UNC5221 and other threat groups targeting Ivanti Connect Secure VPN and Policy Secure devices.

VPN 103

VPN Malware Authentication Hacking 103

Security Affairs

JULY 15, 2022

Dragos researchers uncovered a small-scale campaign targeting industrial engineers and operators with Sality malware. During a routine vulnerability assessment, Dragos researchers discovered a campaign targeting industrial engineers and operators with Sality malware. “Dragos only tested the DirectLogic-targeting malware.

Passwords 110

Passwords Software Firmware Malware 110

Security Affairs

SEPTEMBER 26, 2023

A new campaign is spreading Xenomorph malware to Android users in the United States, Spain, Portugal, Italy, Canada, and Belgium. Researchers from ThreatFabric uncovered a new campaign spreading Xenomorph malware to Android users in the United States and all over the world. that was significantly improved.

Malware 108

Malware Banking Phishing Engineering 108

Security Affairs

MARCH 10, 2023

A new version of the Xenomorph Android malware includes a new automated transfer system framework and targets 400 banks. The author of the Xenomorph Android malware, the Hadoken Security Group, continues to improve their malicious code. Experts warn that a new variant recently discovered, tracked as Xenomorph.C,

Banking 98

Banking Malware Cryptocurrency Engineering 98

Security Boulevard

JUNE 10, 2022

This Week in Malware, we continue to see an uptick in outright malicious and dependency confusion packages employing novel tactics. A list of some of the packages caught by Sonatype's automated malware detection systems is given below and more analysis is expected to follow in subsequent blog posts next week.

Malware 59

Malware Firewall 59

Cisco Security

NOVEMBER 3, 2022

Cisco provided automated malware analysis, threat intelligence, DNS visibility and Intrusion Detection; brought together with SecureX. Malware Analysis, through the NetWitness® integration. Automate, Automate. Aditya Sankar / Ben Greenbaum – SecureX & Malware Analytics. Voice over IP.

Wireless 73

Wireless DNS Education Encryption 73

Security Affairs

DECEMBER 4, 2022

The North Korea-linked Lazarus APT spreads fake cryptocurrency apps under the fake brand BloxHolder to install the AppleJeus malware. Volexity researchers warn of a new malware campaign conducted by the North Korea-linked Lazarus APT against cryptocurrency users. “continues the analysis.

Cryptocurrency 88

Cryptocurrency Malware Hacking Information Security 88

Security Affairs

FEBRUARY 16, 2022

TrickBot malware is targeting customers of 60 financial and technology companies with new anti-analysis features. The infamous TrickBot malware was employed in attacks against customers of 60 financial and technology companies with new anti-analysis features. ” reads the analysis published by CheckPoint.

Malware 83

Malware Banking Cryptocurrency Technology 83

Security Affairs

JANUARY 21, 2024

Patch it now! million cryptojacking scheme arrested in Ukraine Cybercrime Cryptojacker arrested in Ukraine over EUR 1.8 million cryptojacking scheme arrested in Ukraine Cybercrime Cryptojacker arrested in Ukraine over EUR 1.8

Artificial Intelligence 94

Artificial Intelligence VPN Hacking Firewall 94

CyberSecurity Insiders

JANUARY 3, 2023

In the year 2021, security analysts tagged Ransomware at the trending malware topping the list in the Crypto-virology chart. The highlight of this malware filled cyber attack is that criminals are becoming innovative with time and are launching attacks with more sophistication.

Software 120

Software Ransomware Manufacturing Encryption 120

Security Affairs

FEBRUARY 14, 2023

Threat actors published more than 451 unique malware-laced Python packages on the official Python Package Index (PyPI) repository. Phylum researchers spotted more than 451 unique Python packages on the official Python Package Index (PyPI) repository in an attempt to deliver clipper malware on the developer systems.

Malware 71

Malware Cryptocurrency Hacking Software 71

Security Boulevard

MARCH 3, 2021

Expanded Alliance Extends Distribution Agreement with Ingram Micro for Fast Growing Provider of Malware Analysis and Detection Solutions Boston, MA – March 3, 2021 – VMRay, a provider of automated malware analysis and detection solutions, today announced it has expanded its strategic alliance with Ingram Micro Inc.,

Malware 59

Malware Technology 59

Centraleyes

FEBRUARY 8, 2024

EDR solutions leverage threat intelligence, machine learning, and advanced file analysis for advanced threat detection. They rely on a predefined database of known malware signatures to identify and block threats. However, this approach falters when confronted with stealthy threats like polymorphic malware.

Antivirus 52

Antivirus Cyber threats Malware Threat Detection 52

Security Affairs

JULY 13, 2022

Experts warn that operators behind the Qakbot malware operation are improving their attack chain in an attempt to avoid detection. Qakbot , also known as QBot, QuackBot and Pinkslipbot, is an info-stealing malware that has been active since 2008. The malware spreads via malspam campaigns, it inserts replies in active email threads.

Malware 117

Malware Hacking Cybercrime Information Security 117

Approachable Cyber Threats

FEBRUARY 23, 2024

Adaptive Malware - A Shape-Shifting Nemesis: Meet the shape-shifting nemesis… adaptive malware. Fueled by AI, this breed of malware dynamically alters its code and behavior, a perpetual game of cat and mouse with conventional detection methods. Movie Fantasy Meets Reality: Researchers at HYAS Infosec, Inc.

Cybersecurity 52

Cybersecurity Artificial Intelligence Malware Phishing 52

Security Affairs

NOVEMBER 15, 2021

The malware has been active at least since late October 2021, it targeting the mobile users of banks in Italy, the UK, and the US. The malware implements multiple anti-analysis techniques, including string obfuscation routine, emulator detection and a domain generation algorithm (DGA). ” concludes the report.

Banking 123

Banking Mobile Social Engineering Malware 123

SecureList

APRIL 19, 2021

On April 8, 2021, we conducted a webinar with Ivan Kwiatkowski and Denis Legezo , Senior Security Researchers from our Global Research & Analysis Team (GReAT), who gave live workshops on practical disassembling, decrypting and deobfuscating authentic malware cases, moderated by GReAT’s own Dan Demeter.

Engineering 121

Engineering Malware InfoSec Education 121

CyberSecurity Insiders

NOVEMBER 1, 2022

Back then, endpoint security focused on computers, which meant the installation of antivirus, malware protection, firewall, and (sometimes) VPN in every computer. They are designed to detect and block file-based malware attacks, examine network activities for malicious operations, and facilitate incident investigation and remediation.

IoT 120

IoT Antivirus Threat Detection Cyber threats 120

Lenny Zeltser

SEPTEMBER 26, 2019

What malware analysis approaches work well? The following discussion–captured as an MP3 audio file –offers friendly advice from 5 malware analysts. 1:05) How has your approach to examining malware changed over the years? (7:17) 7:17) What role do automated sandboxes play in the analysis process? (14:30)

Malware 91

Malware InfoSec Engineering Software 91

Security Affairs

JANUARY 6, 2023

The experts state that malware creators abuse legitimate functionalities and implement various techniques to exploit vulnerabilities, evade defenses, or trick users into infecting their devices. “The ransomware families we analyzed often share similar anti-analysis and persistence techniques. ” Microsoft concludes.

Ransomware 86

Ransomware Encryption Malware Hacking 86

Security Affairs

FEBRUARY 19, 2024

Raccoon is offered for sale as a malware-as-a-service (MaaS) that implements an easy-to-use automated backend panel, operators also offer bulletproof hosting and 24/7 customer support in both Russian and English. The malware is now promoted on English-speaking hacking forums, it works on both 32-bit and 64-bit operating systems.

Identity Theft 91

Identity Theft Cryptocurrency Cybercrime Hacking 91

Jane Frankland

JANUARY 9, 2024

XDR is a threat centric network traffic analysis (NTA) service. TDR uses automation to enhance the efficiency of incident response teams, ensuring a rapid and effective defence against cyber threats. EDR provides endpoint-focused threat identification, remediation and threat hunting support.

Threat Detection 147

Threat Detection Technology Marketing Artificial Intelligence 147

Security Affairs

MAY 26, 2021

Kubernetes is an open-source container-orchestration system for automating computer application deployment, scaling, and management. The TeamTNT botnet is a crypto-mining malware operation that has been active since April 2020 and that targets Docker installs. The malware deploys the XMRig mining tool to mine Monero cryptocurrency.

Cryptocurrency 130

Cryptocurrency Malware Internet Internet 130

Malwarebytes

NOVEMBER 16, 2021

According to the researchers, SharkBot demonstrates: “…how mobile malwares are quickly finding new ways to perform fraud, trying to bypass behavioural detection countermeasures put in place by multiple banks and financial services during the last years.” Once installed, the malware downloads an additional module from the C2.

Banking 103

Banking Financial Services Encryption Malware 103

SecureWorld News

DECEMBER 18, 2023

Its analysis reveals a startling insight into how quickly attackers capitalize on these vulnerabilities. According to the report: "Of the 206 high-risk vulnerabilities we tracked, more than 50 percent of those were either leveraged by threat actors, ransomware, or malware to compromise systems. 15 exploited by malware and botnets.

IoT 80

IoT Authentication Risk Ransomware 80

CyberSecurity Insiders

JANUARY 9, 2023

Answering this question has placed CISOs on a path towards continuous audit readiness that’s accomplished by automating audit processes, from Scope to Evidence. The net effect of these events has introduced well known audit readiness challenges, such as: Audit data is siloed and fragmented, preventing timely, efficient and accurate analysis.

Policy Compliance 142

Policy Compliance Technology Digital transformation Encryption 142

Lenny Zeltser

JULY 22, 2020

This Linux distribution for malware analysis includes hundreds of new and classic tools for examining executables, documents, scripts, and other forms of malicious code. To achieve this, the distro now uses SaltStack behind the scenes for automating the installation and configuration of software.

Architecture 145

Architecture Malware Software Technology 145

Security Affairs

APRIL 19, 2022

Researchers disclosed a new variant of the SolarMarker malware that implements new techniques to avoid detection. Cybersecurity researchers from Palo Alto Networks disclosed a new version of the SolarMarker malware that implements new features to avoid detection. ” reads the analysis published by PaloAlto Networks.

Encryption 85

Encryption Malware Engineering Passwords 85

The Last Watchdog

MARCH 24, 2020

Related: ‘ Risk-based’ analysis used in SOAR At RSA 2020 , I learned about yet another emerging approach, with supporting technology, called Security Operations Platform (SOP.) Unified workspace Young describes QuoLab’s flagship product as a “data fusion, investigation and analysis platform with a collaborative spin.”

Technology 138

Technology Malware Internet Internet 138

CyberSecurity Insiders

JUNE 21, 2023

Machine learning (which is a subset of artificial intelligence, or “AI”)—and in particular, machine learning-powered predictive analytics—are enhancing threat detection and response in the SOC by providing an automated way to quickly analyze and prioritize alerts. For example, a supervised ML model can learn to recognize malware.

Threat Detection 64

Threat Detection Artificial Intelligence Malware Architecture 64