Security Affairs

FEBRUARY 6, 2022

If you want to also receive for free the newsletter with the international press subscribe here.

Social Engineering 78

Social Engineering Cryptocurrency Small Business Ransomware 78

SecureList

MAY 27, 2022

MoonBounce: the dark side of UEFI firmware. Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). The campaign has two goals: gathering information and stealing cryptocurrency. Targeted attacks.

Phishing 110

Phishing Spyware Firmware Malware 110

Security Affairs

DECEMBER 17, 2023

CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Data breaches 78

Data breaches Cybercrime Firewall Artificial Intelligence 78

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware. MOUSEISLAND may be the initial phase of a ransomware attack.

Malware 85

Malware Banking Healthcare Penetration Testing 85

Security Affairs

NOVEMBER 20, 2021

Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 341 appeared first on Security Affairs.

Banking 65

Banking Small Business Data breaches Firmware 65

SecureList

OCTOBER 25, 2023

Introduction It’s just another cryptocurrency miner… Nobody would even suspect the mining malware was merely a mask, masquerading behind an intricate modular framework that supports both Linux and Windows. During that time, it had effectively evaded analysis and had previously been misclassified as a cryptocurrency miner.

Malware 114

Malware DNS Encryption Cryptocurrency 114

Security Affairs

NOVEMBER 4, 2019

“The original infection method remains unknown, but during that phase malicious code is injected to the firmware of the target system, and the code is then run as part of normal operations within the device. DDoS attack, cryptocurrency miner, data harvesting). ” reads the report. After this the device has been compromised.

Malware 61

Malware Firmware Advertising Encryption 61

Security Affairs

FEBRUARY 23, 2020

IOTA cryptocurrency shuts down entire network after a coordinated attack on its Trinity wallet. Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack. US CISA warns of Ransomware attacks impacting pipeline operations. Croatias largest petrol station chain INA group hit by ransomware attack.

Artificial Intelligence 61

Artificial Intelligence eCommerce Firmware Hacking 61

eSecurity Planet

NOVEMBER 16, 2021

Bad actors are increasingly using a technique called HTML smuggling to deliver ransomware and other malicious code in email campaigns aimed at financial services firms and other organizations, according to Microsoft researchers. See also: How to Prevent Ransomware Attacks. What Is HTML Smuggling?

Firewall 120

Firewall Ransomware Banking Malware 120

Malwarebytes

JUNE 26, 2023

The attacks, which involve brute forcing a way into a system, are designed to profit from mining in illicit fashion for cryptocurrency. Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches. When possible, update OpenSSH to the latest version.

IoT 83

IoT Adware Firmware DDOS 83

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. Ransomware. Ransomware is one of the most virulent forms of malware on the modern Internet.

Malware 75

Malware Adware Spyware Antivirus 75

SecureList

JULY 28, 2022

In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). We discovered a highly active campaign, starting in March 2022, targeting stock and cryptocurrency investors in South Korea.

Malware 136

Malware Firmware Phishing Cryptocurrency 136

SecureList

NOVEMBER 18, 2022

In July, we reported a rootkit that we found in modified Unified Extensible Firmware Interface (UEFI) firmware, the code that loads and initiates the boot process when the computer is turned on. Andariel deploys DTrack and Maui ransomware. Luna and Black Basta: new ransomware for Windows, Linux and ESXi. Targeted attacks.

Malware 105

Malware Computers and Electronics Adware Cryptocurrency 105

SecureList

MAY 10, 2021

Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. Vulnerable devices were either misconfigured or missing the latest firmware version with the required settings. In particular, DDoS ransomware continued to attack organizations worldwide at the start of the year.

DDOS 103

DDOS Cryptocurrency Media Marketing 103

Security Affairs

AUGUST 25, 2019

At least 23 Texas local governments targeted by coordinated ransomware attacks. Intel addresses High-Severity flaws in NUC Firmware and other tools. Employees abused systems at Ukrainian nuclear power plant to mine cryptocurrency. Once again thank you! Bluetana App allows detecting Bluetooth card skimmers in just 3 seconds.

Small Business 49

Small Business Spyware Data breaches Advertising 49

Security Affairs

AUGUST 12, 2018

. · Duo Security created open tools and techniques to identify large Twitter botnet. · Group-IB experts record a massive surge of user data leaks form cryptocurrency exchanges. · HP releases firmware updates for two critical RCE flaws in Inkjet Printers. · TSMC Chip Maker confirms its facilities were infected with WannaCry ransomware. (..)

Firmware 42

Firmware DNS Advertising Surveillance 42

SecureList

MARCH 1, 2021

In 2020, Kaspersky mobile products and technologies detected: 5,683,694 malicious installation packages, 156,710 new mobile banking Trojans, 20,708 new mobile ransomware Trojans. The manufacturer of the mobile device preloads an adware application or a component with the firmware. Mobile ransomware Trojans. The year in figures.

Mobile 138

Mobile Malware Adware Banking 138

eSecurity Planet

JULY 25, 2023

Ransomware attacks: Ransomware is malware extortion attack that encrypts a victim’s files, demanding a ransom payment in exchange for the decryption key. Cryptojacking : Unauthorized use of a computer’s processing power to mine cryptocurrencies. This often causes significant disruptions and data loss to the company.

Software 98

Software Data breaches DDOS Ransomware 98

eSecurity Planet

FEBRUARY 16, 2021

Ransomware. Unlike ransomware, it might be a criminal operation that does not involve the collection of a ransom. CISA reported that LokiBot “employs Trojan malware to steal sensitive information such as usernames, passwords, cryptocurrency wallets, and other credentials.” Email is also usually how ransomware works.

Malware 104

Malware Adware Spyware Antivirus 104

SecureList

APRIL 27, 2022

The following day, Avast Threat Research announced the discovery of new Golang ransomware in Ukraine , which they dubbed HermeticRansom. Due to its unsophisticated style and poor implementation, this new ransomware was probably only a smokescreen for the HermeticWiper attack, due to its non-sophisticated style and poor implementation.

Malware 135

Malware Firmware Government Phishing 135

SecureList

NOVEMBER 14, 2023

The malware posed as ransomware, demanding money from the victims for “decrypting” their data. Then Mandiant reported the last known abuse that revealed the Poortry malware, which had been used in a number of cyberattacks including ransomware-based incidents.

Hacking 109

Hacking Energy and Utilities Media Malware 109