Malware - Cyber Security Informer

Search:

DAY

WEEK

MONTH

YEAR

May 20 - May 26

May 13 - May 19

May 06 - May 12

Apr 29 - May 05

Apr 22 - Apr 28

MORE

MORE

MORE

MORE

Select your country:
Sign up | Log in

Malware

article thumbnail

FBI Disables Russian Malware

Schneier on Security

MAY 10, 2023

Reuters is reporting that the FBI “had identified and disabled malware wielded by Russia’s FSB security service against an undisclosed number of American computers, a move they hoped would deal a death blow to one of Russia’s leading cyber spying programs.” Presumably we will learn more soon.

Malware

Malware Hacking

article thumbnail

PIPEDREAM Malware against Industrial Control Systems

Schneier on Security

MAY 9, 2023

Another nation-state malware , Russian in origin: In the early stages of the war in Ukraine in 2022, PIPEDREAM, a known malware was quietly on the brink of wiping out a handful of critical U.S. electric and liquid natural gas sites. CISA advisory. Wired article.

Malware

Malware Cybersecurity

Join 10,000+

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

The Power of Storytelling in Risk Management

ERM Program Fundamentals for Success in the Banking Industry

Trending Sources

article thumbnail

Another Malware with Persistence

Schneier on Security

MARCH 9, 2023

Here’s a piece of Chinese malware that infects SonicWall security appliances and survives firmware updates. On Thursday, security firm Mandiant published a report that said threat actors with a suspected nexus to China were engaged in a campaign to maintain long-term persistence by running malware on unpatched SonicWall SMA appliances.

Malware

Malware Firmware Backups

Webinars

The Power of Storytelling in Risk Management

ERM Program Fundamentals for Success in the Banking Industry

article thumbnail

Malware Delivered through Google Search

Schneier on Security

FEBRUARY 7, 2023

Criminals using Google search ads to deliver malware isn’t new, but Ars Technica declared that the problem has become much worse recently. The surge is coming from numerous malware families, including AuroraStealer, IcedID, Meta Stealer, RedLine Stealer, Vidar, Formbook, and XLoader.

Malware

Malware Phishing Cybercrime

article thumbnail

Hiding Malware in ML Models

Schneier on Security

JULY 27, 2021

Interesting research: “EvilModel: Hiding Malware Inside of Neural Network Models” Abstract: Delivering malware covertly and detection-evadingly is critical to advanced malware campaigns. In this paper, we present a method that delivers malware covertly and detection-evadingly through neural network models.

Malware

Malware Antivirus Artificial Intelligence Engineering

article thumbnail

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

This post is a deep dive on “ Megatraffer ,” a veteran Russian hacker who has practically cornered the underground market for malware focused code-signing certificates since 2015. More recently, it appears Megatraffer has been working with ransomware groups to help improve the stealth of their malware. WHO IS MEGATRAFFER?

Malware

Malware Cybercrime Antivirus Passwords

article thumbnail

Mysterious Macintosh Malware

Schneier on Security

MARCH 2, 2021

This is weird : Once an hour, infected Macs check a control server to see if there are any new commands the malware should run or binaries to execute. So far, however, researchers have yet to observe delivery of any payload on any of the infected 30,000 machines, leaving the malware’s ultimate goal unknown. Another article.

Malware

Malware Government

article thumbnail

New Linux Cryptomining Malware

Schneier on Security

SEPTEMBER 12, 2022

It’s pretty nasty : The malware was dubbed “ Shikitega ” for its extensive use of the popular Shikata Ga Nai polymorphic encoder, which allows the malware to “mutate” its code to avoid detection.

Malware

Malware Backups IoT Software

article thumbnail

BlackLotus Malware Hijacks Windows Secure Boot Process

Schneier on Security

MARCH 8, 2023

Researchers have discovered malware that “can hijack a computer’s boot process even when Secure Boot and other advanced protections are enabled and running on fully updated versions of Windows.” ” Dubbed BlackLotus, the malware is what’s known as a UEFI bootkit.

Malware

Malware Firmware Hacking Software

article thumbnail

Using EM Waves to Detect Malware

Schneier on Security

JANUARY 14, 2022

Researchers have developed a malware detection system that uses EM waves: “ Obfuscation Revealed: Leveraging Electromagnetic Signals for Obfuscated Malware Classification.” We recorded 100,000 measurement traces from an IoT device infected by various in-the-wild malware samples and realistic benign activity.

Malware

Malware Firmware IoT Internet

article thumbnail

Nexus Android malware targets 450 financial applications

Tech Republic Security

MARCH 29, 2023

The post Nexus Android malware targets 450 financial applications appeared first on TechRepublic. Learn how to protect your organization and users from this Android banking trojan.

Malware

Malware Banking Cybersecurity Mobile

article thumbnail

Malware is proliferating, but defenses are stronger: Mandiant

Tech Republic Security

APRIL 20, 2023

As dwell times drop, and notifications of attack by third parties increase, organizations are getting better at defense while attackers evolve and malware proliferates. The post Malware is proliferating, but defenses are stronger: Mandiant appeared first on TechRepublic.

Malware

Malware Phishing Cybersecurity Software

article thumbnail

Leaked Signing Keys Are Being Used to Sign Malware

Schneier on Security

DECEMBER 8, 2022

A bunch of Android OEM signing keys have been leaked or stolen, and they are actively being used to sign malware.

Malware

Malware Authentication Accountability

article thumbnail

Credential harvesting malware appears on deep web

Tech Republic Security

APRIL 17, 2023

The post Credential harvesting malware appears on deep web appeared first on TechRepublic. New cloud-focused credential harvester available on encrypted messaging service Telegram is part of a trend of Python scrapers making it easier to bait multiple phishing hooks.

Malware

Malware Phishing Encryption Cybersecurity

article thumbnail

ChatGPT now generates Malware mutations

CyberSecurity Insiders

MAY 25, 2023

However, can you imagine that chatbot assistance is also being used to create malware and its various mutations? Tim West, the head of WestSecure, believes that the creation of malware through artificial intelligence will increase challenges for defenders.

Malware

Malware Artificial Intelligence Cybersecurity Software

article thumbnail

Security warning: Beep malware can evade detection

Tech Republic Security

FEBRUARY 16, 2023

Find out how Beep malware can evade your security system, what it can do and how to protect your business. The post Security warning: Beep malware can evade detection appeared first on TechRepublic.

Malware

Malware Ransomware Cybersecurity

article thumbnail

Cryptocurrency users in the US hit by ransomware and Clipper malware

Tech Republic Security

FEBRUARY 16, 2023

Learn how to protect your business and staff from the MortalKombat ransomware and Laplas Clipper malware. The post Cryptocurrency users in the US hit by ransomware and Clipper malware appeared first on TechRepublic.

Malware

Malware Cryptocurrency Ransomware Phishing

article thumbnail

New PowerExchange malware backdoors Microsoft Exchange servers

Bleeping Computer

MAY 24, 2023

A new PowerShell-based malware dubbed PowerExchange was used in attacks linked to APT34 Iranian state hackers to backdoor on-premise Microsoft Exchange servers. [.]

Malware

Malware

article thumbnail

Rise of cloud-delivered malware poses key security challenges

Tech Republic Security

JANUARY 18, 2023

The volume of cloud-based malware tripled in 2022 over the prior year, says Netskope, with 30% of the malicious downloads coming from Microsoft OneDrive. The post Rise of cloud-delivered malware poses key security challenges appeared first on TechRepublic.

Malware

Malware Cybersecurity

article thumbnail

OneNote documents spread malware in several countries

Tech Republic Security

FEBRUARY 1, 2023

A new phishing campaign abuses OneNote documents to infect computers with the infamous AsyncRAT malware, targeting users in the U.K., The post OneNote documents spread malware in several countries appeared first on TechRepublic. Canada and the U.S.

Malware

Malware Phishing Ransomware

article thumbnail

RomCom malware spread via Google Ads for ChatGPT, GIMP, more

Bleeping Computer

MAY 30, 2023

A new campaign distributing the RomCom backdoor malware is impersonating the websites of well-known or fictional software, tricking users into downloading and launching malicious installers. [.]

Malware

Malware Software

article thumbnail

New Hiatus malware campaign targets routers

Tech Republic Security

MARCH 13, 2023

A new malware dubbed HiatusRAT infects routers to spy on its targets, mostly in Europe and in the U.S. The post New Hiatus malware campaign targets routers appeared first on TechRepublic. Learn which router models are primarily targeted and how to protect from this security threat.

Malware

Malware Network Security Cybersecurity

article thumbnail

QBot malware abuses Windows WordPad EXE to infect devices

Bleeping Computer

MAY 27, 2023

The QBot malware operation has started to abuse a DLL hijacking flaw in the Windows 10 WordPad program to infect computers, using the legitimate program to evade detection by security software. [.]

Malware

Malware Software

article thumbnail

Prilex POS malware evolves to block contactless transactions

Tech Republic Security

FEBRUARY 2, 2023

A new version of the Prilex POS malware has found a novel way to steal your credit card information. The post Prilex POS malware evolves to block contactless transactions appeared first on TechRepublic.

Malware

Malware Phishing

article thumbnail

New Chaos malware spreads over multiple architectures

Tech Republic Security

SEPTEMBER 30, 2022

A new malware named Chaos raises concerns as it spreads on multiple architectures and operating systems. The post New Chaos malware spreads over multiple architectures appeared first on TechRepublic.

Malware

Malware Architecture

article thumbnail

N. Korean Lazarus Group Targets Microsoft IIS Servers to Deploy Espionage Malware

The Hacker News

MAY 24, 2023

The infamous Lazarus Group actor has been targeting vulnerable versions of Microsoft Internet Information Services (IIS) servers as an initial breach route to deploy malware on targeted systems.

Malware

Malware Internet Internet

article thumbnail

Researchers find new ICS malware toolkit designed to cause electric power outages

CSO Magazine

MAY 26, 2023

A new addition to this arsenal is a malware toolkit that seems to have been developed for red-teaming exercises by a Russian cybersecurity company. COSMICENERGY is the latest example of specialized OT malware capable of causing cyber physical impacts, which are rarely discovered or disclosed," the Mandian researchers said in their report.

Malware

Malware Cybersecurity Engineering Technology

article thumbnail

New DotRunpeX Malware Delivers Multiple Malware Families via Malicious Ads

The Hacker News

MARCH 20, 2023

A new piece of malware dubbed dotRunpeX is being used to distribute numerous known malware families such as Agent Tesla, Ave Maria, BitRAT, FormBook, LokiBot, NetWire, Raccoon Stealer, RedLine Stealer, Remcos, Rhadamanthys, and Vidar.

Malware

Malware

article thumbnail

New CosmicEnergy ICS malware threatens energy grid assets

Security Affairs

MAY 26, 2023

Experts detailed a new piece of malware, named CosmicEnergy, that is linked to Russia and targets industrial control systems (ICS). Researchers from Mandiant discovered a new malware, named CosmicEnergy, designed to target operational technology (OT) / industrial control system (ICS) systems. ” concludes the report.

Malware

Malware Hacking Cybersecurity Information Security

article thumbnail

Is misinformation the newest malware?

CSO Magazine

MAY 1, 2023

At this year's RSA Conference, information security experts appeared on a panel entitled "Misinformation Is the New Malware" to hammer out the distinctions. As both types of threats escalate and frequently appear simultaneously in threat actors' campaigns, the lines between the two are getting fuzzy.

Malware

Malware Ransomware Cybersecurity Information Security

article thumbnail

How to protect your organization from the top malware strains

Tech Republic Security

AUGUST 8, 2022

and Australia offers tips on combating the top malware strains of 2021, including Agent Tesla, LokiBot, Qakbot, TrickBot and GootLoader. The post How to protect your organization from the top malware strains appeared first on TechRepublic. A joint advisory from the U.S.

Malware

Malware Ransomware Cybersecurity

article thumbnail

CLR SqlShell Malware Targets MS SQL Servers for Crypto Mining and Ransomware

The Hacker News

MAY 15, 2023

Poorly managed Microsoft SQL (MS SQL) servers are the target of a new campaign that's designed to propagate a category of malware called CLR SqlShell that ultimately facilitates the deployment of cryptocurrency miners and ransomware.

Malware

Malware Ransomware Cryptocurrency

article thumbnail

Destructive “HermeticWiper” malware strikes Ukraine

Tech Republic Security

MARCH 1, 2022

A new type of malware attack is hitting Ukraine, and it renders the victim's machine useless. The post Destructive “HermeticWiper” malware strikes Ukraine appeared first on TechRepublic.

Malware

Malware

article thumbnail

New COSMICENERGY Malware Exploits ICS Protocol to Sabotage Power Grids

The Hacker News

MAY 25, 2023

Google-owned threat intelligence firm Mandiant dubbed the malware COSMICENERGY, adding it was uploaded to a public malware scanning utility in December 2021 by a submitter in Russia. A new strain of malicious software that's engineered to penetrate and disrupt critical systems in industrial environments has been unearthed.

Malware

Malware Engineering Software

article thumbnail

New DownEx malware campaign targets Central Asia

CSO Magazine

MAY 11, 2023

A previously undocumented malware campaign called DownEx has been observed actively targeting government institutions in Central Asia for cyberespionage , according to a report by Bitdefender.

Malware

Malware Government

article thumbnail

New FiXS ATM Malware Targeting Mexican Banks

The Hacker News

MARCH 4, 2023

A new ATM malware strain dubbed FiXS has been observed targeting Mexican banks since the start of February 2023. The ATM malware is hidden inside another not-malicious-looking program," Latin American cybersecurity firm Metabase Q said in a report shared with The Hacker News.

Malware

Malware Banking Cybersecurity

article thumbnail

Legion Malware Upgraded to Target SSH Servers and AWS Credentials

The Hacker News

MAY 24, 2023

An updated version of the commodity malware called Legion comes with expanded features to compromise SSH servers and Amazon Web Services (AWS) credentials associated with DynamoDB and CloudWatch.

Malware

Malware

article thumbnail

Barracuda Networks Reports Shift in HTML Malware Tactics

Security Boulevard

MAY 5, 2023

Barracuda Networks has published a report detailing how cybercriminals are now embedding malware within an HTML file that historically was created to deliver a malicious payload via a link to an external site. That shift in approach makes it more difficult for some classes of security scanner to detect malware embedded in an email.

Malware

Malware Social Engineering Phishing Cybersecurity

article thumbnail

MacStealer – newly-discovered malware steals passwords and exfiltrates data from infected Macs

Graham Cluley

APRIL 20, 2023

I'm still encountering people who, even after all these years, believe that their Apple Mac computers are somehow magically invulnerable to ever being infected by malware. Maybe details of this new Mac malware will change their mind.

Malware

Malware Passwords

article thumbnail

BlackMamba: Using AI to Generate Polymorphic Malware

Security Boulevard

MARCH 7, 2023

This powerful and versatile tool can be used for everything from answering simple questions to instantly composing written works to developing original software programs, including malware — the latter of which introduces the potential for a dangerous new breed of cyber threats.

Malware

Malware Cyber threats Artificial Intelligence Social Engineering

article thumbnail

Cybercrime gang pre-infects millions of Android devices with malware

Bleeping Computer

MAY 18, 2023

A cybercriminal tracked as the "Lemon Group" has been infecting millions of Android-based smartphones, watches, TVs, and TV boxes, with a malware strain named 'Guerilla.' [.]

Malware

Malware Cybercrime Mobile

article thumbnail

Meet 'Jack' from Romania! Mastermind Behind Golden Chickens Malware

The Hacker News

MAY 20, 2023

The identity of the second threat actor behind the Golden Chickens malware has been uncovered courtesy of a fatal operational security blunder, cybersecurity firm eSentire said. The individual in question, who lives in Bucharest, Romania, has been given the codename Jack. forum under the name "badbullzvenom,"

Malware

Malware Cybersecurity Accountability

article thumbnail

New Russian Malware Raises Concerns for Energy Grid Security

SecureWorld News

MAY 26, 2023

Security researchers at Mandiant have recently made a significant discovery in the realm of industrial control system (ICS) malware. Named "CosmicEnergy," this specialized operational technology (OT) malware poses a potential threat to critical infrastructure systems and electric grids.

Malware

Malware Cybersecurity Government Risk

article thumbnail

Guerrilla malware is preinfected on 8.9 million Android devices, Trend Micro says

CSO Magazine

MAY 19, 2023

Cybercrime gang Lemon Group has managed to get malware known as Guerrilla preinstalled on about 8.9 The Guerilla malware can load additional payloads, intercept one-time passwords (OTPs) from SMS texts, set up a reverse proxy from the infected device, and infiltrate WhatsApp sessions.

Malware

Malware Cybercrime Passwords Advertising