CSO and Malware - Cyber Security Informer

CSO: Gigabyte firmware component can be abused as a backdoor

Security Boulevard

JUNE 5, 2023

Attackers can abuse the UEFI firmware to inject executable malware code into the Windows kernel, compromising systems. Read More > The post CSO: Gigabyte firmware component can be abused as a backdoor appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.

CSO

CSO Firmware Malware

The Week in Security: Former Uber CSO convicted over hack cover-up, supply chain attack targets media

Security Boulevard

NOVEMBER 10, 2022

This week: Former Uber CSO is convicted for his attempted cover-up of a 2016 hack of the company. Also: A software supply chain attack has pushed out malware to at least 250 media sites. .

CSO

CSO Media Hacking Software

Wave of native IIS malware hits Windows servers

CSO Magazine

AUGUST 11, 2021

Security researchers warn that multiple groups are compromising Windows web servers and are deploying malware programs that are designed to function as extensions for Internet Information Services (IIS). How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters !

Malware

Malware CSO Internet Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Gootkit malware creators expand their distribution platform

CSO Magazine

MARCH 3, 2021

The cybercriminal gang behind the Gootkit Trojan is expanding its malware distribution activities and is improving its multi-stage distribution platform to deliver additional threats. How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! Sign up for CSO newsletters ! ].

Malware

Malware CSO Ransomware

Siloscape malware escapes Windows containers to backdoor Kubernetes clusters

CSO Magazine

JUNE 9, 2021

Malware attacks against cloud containers are nothing new, but these attacks have primarily focused on Linux deployments because they are the most common and where containers were born. How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! Sign up for CSO newsletters ! ]

Malware

Malware CSO

APT group hits IIS web servers with deserialization flaws and memory-resident malware

CSO Magazine

JULY 27, 2021

A sophisticated, likely government-sponsored threat actor has been compromising major public and private organizations over the past year by exploiting deserialization flaws in public-facing ASP.NET applications to deploy fileless malware. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

Malware

Malware CSO Internet Internet

4 most dangerous emerging ransomware threat groups to watch

CSO Magazine

AUGUST 24, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] These are AvosLocker, Hive Ransomware, HelloKitty, and LockBit 2.0. To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Ransomware recovery: 8 steps to successfully restore from backup

CSO Magazine

AUGUST 12, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] Part of the reason is the lack of backups—specifically, the lack of usable backups. To read this article in full, please click here

Backups

Backups Ransomware CSO Malware

REvil gang suddenly goes silent leaving victims unable to recover systems

CSO Magazine

JULY 13, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] Meanwhile, victims and the security companies working for them to recover data have been put in a more difficult situation.

CSO

CSO Ransomware Government Malware

Over 60,000 Android apps infected with adware-pushing malware

CSO Magazine

JUNE 7, 2023

Bitdefender has uncovered a hidden malware campaign living undetected on mobile devices worldwide for more than six months. The campaign is designed to push adware to Android devices with the purpose of driving revenue.

Adware

Adware Malware Banking Mobile

7 steps to protect against ransomware-related lawsuits

CSO Magazine

AUGUST 18, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Unique TTPs link Hades ransomware to new threat group

CSO Magazine

JUNE 15, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Yes, the FBI held back REvil ransomware keys

CSO Magazine

SEPTEMBER 22, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] What were they thinking? What were they protecting? To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Is misinformation the newest malware?

CSO Magazine

MAY 1, 2023

At this year's RSA Conference, information security experts appeared on a panel entitled "Misinformation Is the New Malware" to hammer out the distinctions. As both types of threats escalate and frequently appear simultaneously in threat actors' campaigns, the lines between the two are getting fuzzy.

Malware

Malware Ransomware Information Security Cybersecurity

TrickBot returns with campaign against legal and insurance firms

CSO Magazine

JANUARY 29, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ] Despite the security industry's efforts to disrupt the TrickBot botnet , its operators are trying to revive it with new infection campaigns. To read this article in full, please click here

Insurance

Insurance CSO Malware

Critical flaw in Atlassian Confluence actively exploited

CSO Magazine

SEPTEMBER 3, 2021

Some of the attacks deploy cryptocurrency mining malware, but Atlassian products have also been targeted in the past by cyberespionage groups. Hackers have started exploiting a critical remote code execution vulnerability that was patched recently in Atlassian Confluence Server and Data Center.

CSO

CSO Cryptocurrency Malware

Biden sanctions Suex cryptocurrency exchange to stifle ransomware payments

CSO Magazine

SEPTEMBER 21, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Cryptocurrency

Cryptocurrency Ransomware CSO Marketing

APT29 targets Active Directory Federation Services with stealthy backdoor

CSO Magazine

SEPTEMBER 30, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ]. In a new report , Microsoft attributes the malware program called FoggyWeb to a group the company tracks as NOBELIUM, but which is also known in the security industry as APT29 or Cozy Bear.

CSO

CSO Malware Government Software

Biden Administration announces flurry of new anti-ransomware efforts

CSO Magazine

JULY 16, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Ransomware

Ransomware CSO Malware

9 types of computer virus and how they do their dirty work

CSO Magazine

JUNE 10, 2022

The human mind loves to categorize things, and malware is no exception.

Adware

Adware CSO Malware Ransomware

Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation

CSO Magazine

OCTOBER 13, 2021

Get the latest from CSO by signing up for our newsletters. ]. The attack campaigns targeted IT companies, defense contractors and diplomatic entities. Discover Windows 11's best security features. |

CSO

CSO Malware

Authentication bypass allows complete takeover of Modicon PLCs used across industries

CSO Magazine

JULY 12, 2021

According to researchers from security firm Armis, who found and reported the vulnerability, attackers with network access to impacted controllers could exploit the issue to install malware that alters the operation of the controllers and hides those malicious changes from the workstations and operators managing them.

Authentication

Authentication Energy and Utilities CSO Malware

Amazon Sidewalk highlights network security visibility risks consumer services pose

CSO Magazine

AUGUST 17, 2021

The research also discovered a novel use of Houdini malware to spoof devices and exfiltrate data within the user agent field, a method often undetected by legacy security systems. Get the latest from CSO by signing up for our newsletters. ] Get the latest from CSO by signing up for our newsletters. ]

Consumer Services

Consumer Services Network Security Risk CSO

New DownEx malware campaign targets Central Asia

CSO Magazine

MAY 11, 2023

A previously undocumented malware campaign called DownEx has been observed actively targeting government institutions in Central Asia for cyberespionage , according to a report by Bitdefender.

Malware

Malware Government

Hard-to-detect malware loader distributed via AI-generated YouTube videos

CSO Magazine

APRIL 18, 2023

Security researchers warn of a new malware loader that's used as part of the infection chain for the Aurora information stealer. The Aurora infostealer is written in Go and is operated as a malware-as-a-service platform that's advertised on Russian-language cybercrime forums.

Malware

Malware Cryptocurrency Cybercrime Advertising

Researchers find new ICS malware toolkit designed to cause electric power outages

CSO Magazine

MAY 26, 2023

A new addition to this arsenal is a malware toolkit that seems to have been developed for red-teaming exercises by a Russian cybersecurity company. COSMICENERGY is the latest example of specialized OT malware capable of causing cyber physical impacts, which are rarely discovered or disclosed," the Mandian researchers said in their report.

Malware

Malware Engineering Technology Cybersecurity

Best new Windows 10 security features: Improvements to Intune, Windows Defender Application Guard

CSO Magazine

JUNE 15, 2021

Learn how to identify, block and remove malware from Windows PCs. | Get the latest from CSO by signing up for our newsletters. ]. Many of those changes will allow you to improve your security posture and offer more security choices. You no longer have to wait for a new operating system to deploy new security features. Windows 10 21H1.

CSO

CSO Malware

Iranian APT targets aerospace and telecom firms with stealthy ShellClient Trojan

CSO Magazine

OCTOBER 6, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ] The goal of the attacks is the theft of information about the victims' infrastructure, technology and critical assets. [ To read this article in full, please click here

CSO

CSO Technology Malware

LockFile ransomware uses intermittent encryption to evade detection

CSO Magazine

AUGUST 30, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] To read this article in full, please click here

Encryption

Encryption Ransomware CSO Antivirus

Akamai CSO Talks Cryptominers, IoT and the Reemergence of Old Threats

Threatpost

APRIL 20, 2018

Andy Ellis, CSO Akamai, discusses how the company works with others within the cybersecurity landscape to help keep the internet safe.

CSO

CSO IoT Internet Internet

Law enforcement takes over Emotet, one of the biggest botnets

CSO Magazine

JANUARY 27, 2021

How well do you know these 9 types of malware and how to recognize them. Sign up for CSO newsletters ! ] Whether this disruption to the botnet will be permanent remains to be seen, but it's a promising development according to security experts. [ To read this article in full, please click here

CSO

CSO Malware

White House international ransomware initiative outlines hopes and challenges

CSO Magazine

OCTOBER 18, 2021

Learn how recent ransomware attacks define the malware's new age and 5 reasons why the cost of ransomware attacks is rising. | Get the latest from CSO by signing up for our newsletters. ] Present were ministers and representatives from more than 30 countries and the European Union. To read this article in full, please click here

Ransomware

Ransomware CSO Malware

Traditional malware increasingly takes advantage of ChatGPT for attacks

CSO Magazine

JUNE 6, 2023

Traditional malware techniques are increasingly taking advantage of interest in ChatGPT and other generative AI programs, according to a Palo Alto Networks report on malware trends.

Malware

Guerrilla malware is preinfected on 8.9 million Android devices, Trend Micro says

CSO Magazine

MAY 19, 2023

Cybercrime gang Lemon Group has managed to get malware known as Guerrilla preinstalled on about 8.9 The Guerilla malware can load additional payloads, intercept one-time passwords (OTPs) from SMS texts, set up a reverse proxy from the infected device, and infiltrate WhatsApp sessions.

Malware

Malware Cybercrime Mobile Advertising

New cryptomining malware targets AWS Lambda

CSO Magazine

APRIL 6, 2022

Malware authors are keeping with the times and when it comes to server-oriented malware. Specifically, attackers will adopt the same technologies their target organizations are using. To read this article in full, please click here

Malware

Malware Cryptocurrency Technology Software

Detecting anomalies with TLS fingerprints could pinpoint supply chain compromises

CSO Magazine

OCTOBER 21, 2021

Sign up for CSO newsletters. ]. The premise is that malware programs, regardless of how they're delivered, often come with their own TLS libraries or TLS configuration and their HTTPS handshakes would be identifiable in traffic logs when compared to TLS client hashes of pre-approved applications.

CSO

CSO Software Malware Cybersecurity

MITRE ATT&CK, VERIS frameworks integrate for better incident insights

CSO Magazine

SEPTEMBER 27, 2021

. | Sign up for CSO newsletters. ]. One recent example comes from McAfee, which used ATT&CK in a case that initially started as an investigation into a suspected malware infection but ended up as a surprise discovery of a long-term cyberattack by two Chinese threat groups, APT27 and APT4.

CSO

CSO Malware

Ryuk ransomware explained: A targeted, devastatingly effective attack

CSO Magazine

MARCH 19, 2021

The group behind the malware is known for using manual hacking techniques and open-source tools to move laterally through private networks and gain administrative access to as many systems as possible before initiating the file encryption. Get the latest from CSO by signing up for our newsletters. ]

Ransomware

Ransomware CSO Encryption Government

15 open source GitHub projects for security pros

CSO Magazine

APRIL 27, 2021

Whether you are a sysadmin, a threat intel analyst, a malware researcher, forensics expert, or even a software developer looking to build secure software, these 15 free tools from GitHub or GitLab can easily fit into your day-to-day work activities and provide added advantages. Get the latest from CSO by signing up for our newsletters. ].

CSO

CSO Malware Software

Chinese hackers launch Linux variant of PingPull malware

CSO Magazine

APRIL 27, 2023

Chinese state-sponsored threat actor Alloy Taurus has introduced a new variant of PingPull malware , designed to target Linux systems, Palo Alto Networks said in its research. Along with the new variant, another backdoor called Sword2033 was also identified by the researchers. Alloy Taurus, a Chinese APT , has been active since 2012.

Malware

Malware Telecommunications Government

Iron Tiger updates malware to target Linux platform

CSO Magazine

MARCH 3, 2023

Iron Tiger, an advanced persistent threat ( APT ) group, has updated their SysUpdate malware to include new features and add malware infection support for the Linux platform, according to a report by Trend Micro. To read this article in full, please click here

Malware

The Prometheus traffic direction system is a major player in malware distribution

CSO Magazine

JANUARY 19, 2022

There are the malware developers, the access brokers, the spammers, the private information sellers, the botnet operators, the malvertizers and more. One service that is often overlooked but still plays an important role in malware delivery are so-called traffic direction systems (TDS).

Malware

Malware Cybercrime Phishing Ransomware

Russian cyberspies hit NATO and EU organizations with new malware toolset

CSO Magazine

APRIL 13, 2023

The Polish government warns that a cyberespionage group linked to Russia's intelligence services is targeting diplomatic and foreign ministries from NATO and EU member states in an ongoing campaign that uses previously undocumented malware payloads.

Malware

Malware Government Software

Malware explained: Definition, examples, detection and recovery

CSO Magazine

FEBRUARY 14, 2022

What is malware? Malware, short for malicious software, is a blanket term for viruses, worms, trojans and other harmful computer programs attackers use to wreak destruction and gain access to sensitive information. How does malware spread and get on your device?

Malware

Malware Technology Software

CSO: Gigabyte firmware component can be abused as a backdoor

The Week in Security: Former Uber CSO convicted over hack cover-up, supply chain attack targets media

Webinars

Trending Sources

Wave of native IIS malware hits Windows servers

Webinars

Gootkit malware creators expand their distribution platform

Siloscape malware escapes Windows containers to backdoor Kubernetes clusters

APT group hits IIS web servers with deserialization flaws and memory-resident malware

4 most dangerous emerging ransomware threat groups to watch

Ransomware recovery: 8 steps to successfully restore from backup

REvil gang suddenly goes silent leaving victims unable to recover systems

Over 60,000 Android apps infected with adware-pushing malware

7 steps to protect against ransomware-related lawsuits

Unique TTPs link Hades ransomware to new threat group

Yes, the FBI held back REvil ransomware keys

Is misinformation the newest malware?

TrickBot returns with campaign against legal and insurance firms

Critical flaw in Atlassian Confluence actively exploited

Biden sanctions Suex cryptocurrency exchange to stifle ransomware payments

APT29 targets Active Directory Federation Services with stealthy backdoor

Biden Administration announces flurry of new anti-ransomware efforts

9 types of computer virus and how they do their dirty work

Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation

Authentication bypass allows complete takeover of Modicon PLCs used across industries

Amazon Sidewalk highlights network security visibility risks consumer services pose

New DownEx malware campaign targets Central Asia

Hard-to-detect malware loader distributed via AI-generated YouTube videos

Researchers find new ICS malware toolkit designed to cause electric power outages

Best new Windows 10 security features: Improvements to Intune, Windows Defender Application Guard

Iranian APT targets aerospace and telecom firms with stealthy ShellClient Trojan

LockFile ransomware uses intermittent encryption to evade detection

Akamai CSO Talks Cryptominers, IoT and the Reemergence of Old Threats

Law enforcement takes over Emotet, one of the biggest botnets

White House international ransomware initiative outlines hopes and challenges

Traditional malware increasingly takes advantage of ChatGPT for attacks

Guerrilla malware is preinfected on 8.9 million Android devices, Trend Micro says

New cryptomining malware targets AWS Lambda

Detecting anomalies with TLS fingerprints could pinpoint supply chain compromises

MITRE ATT&CK, VERIS frameworks integrate for better incident insights

Ryuk ransomware explained: A targeted, devastatingly effective attack

15 open source GitHub projects for security pros

Chinese hackers launch Linux variant of PingPull malware

Iron Tiger updates malware to target Linux platform

The Prometheus traffic direction system is a major player in malware distribution

Russian cyberspies hit NATO and EU organizations with new malware toolset

Malware explained: Definition, examples, detection and recovery

Stay Connected