Security I Trust, Information Security, IT Security

Boots text message scam

November 1, 2019November 1, 2019 admin 0 Comments

Many people across Ireland are receiving text messages that claim they have come from Boots and that you have won

IT Security News

42 Apps 8 Million Downloads all part of an Adware campaign

October 25, 2019 admin 0 Comments

42 apps on the Google Play Store created by a Vietnamese university student were identified by a cybersecurity researchers as

Emerging Threats Info Research

Antivirus Evasion with Python

July 18, 2019 admin 0 Comments AV

When deploying defense in depth security controls for your organization, you are likely to include antiviruses as part of the

Hacking attack Info

Russian Bears Need Less Than 20 Minutes To Hack Your Data

February 22, 2019 admin 0 Comments

Russian bears lead the way when it comes to gaining enough of a foothold in your networks to perform a

IT Security News

Microsoft: Russia’s Fancy Bear Working to Influence EU Elections

February 22, 2019 admin 0 Comments

As hundreds of millions of Europeans prepare to go to the polls in May, Fancy Bear ramps up cyber-espionage and

Info IT Security News

Password Manager Firms Blast Back at ‘Leaky Password’ Revelations

February 22, 2019February 22, 2019 admin 0 Comments

1Password, Dashlane, KeePass and LastPass each downplay what researchers say is a flaw in how the utilities manage memory. Secure

Info IT Security News

AV-TEST Awards 2018 go to TrendMicro

February 22, 2019February 22, 2019 admin 0 Comments

Only the best IT protection solutions are contenders for the internationally recognized AV-TEST Awards. After all, with this award, the

IT Security News News

Cryptocurrency Exchange loses access to €130m in funds

February 5, 2019February 5, 2019 admin 0 Comments

Where is the safest place to store cryptocurrency has always been a debated issue, some say offline, others say online,

Info

Cryptomining Malware Uninstalls Cloud Security Products

January 23, 2019January 23, 2019 admin 0 Comments

New samples of cryptomining malware performs a never-before-seen function: uninstalling cloud security products. Researchers say they have discovered a unique

Info

Google Fined $57M in Largest GDPR Slap Yet

January 23, 2019January 23, 2019 admin 0 Comments

The French Data Protection Authority (DPA) found a lack of transparency when it comes to how Google harvests and uses

← Previous

Mac Backdoor Linked to Lazarus Targets Korean Users November 20, 2019
By Gabrielle Joyce Mabutas Criminal interest in MacOS continues to grow, with malware authors churning out more threats that target users of the popular OS. Case in point: A new variant of a Mac backdoor (detected by Trend Micro as Backdoor.MacOS.NUKESPED.A) attributed to the cybercriminal group Lazarus, which was observed targeting Korean users with a... […]
More than a Dozen Obfuscated APT33 Botnets Used for Extreme Narrow Targeting November 14, 2019
The threat group APT33 is known to target the oil and aviation industries aggressively. Our recent findings show that the group uses about a dozen live Command and Control (C&C) servers for extremely narrow targeted malware campaigns against organizations in the Middle East, the U.S., and Asia. The post More than a Dozen Obfuscated APT33 […]
Microsoft November 2019 Patch Tuesday Reveals 74 Patches Before Major Windows Update November 13, 2019
Following the relatively light list from last month, November proved to be a much more eventful month for Microsoft users. The November Patch Tuesday holds more fixes with a total of 74 patches, 13 of which were classified as Critical patches for remote code execution (RCE) vulnerabilities. The remaining majority were rated as Important and […]
49 Disguised Adware Apps With Optimized Evasion Features Found on Google Play November 7, 2019
We recently found 49 new adware apps on Google Play, disguised as games and stylized cameras. Before they were taken down by Google, the total number of downloads for these apps was more than 3 million. This recent incident continues an ongoing trend of mobile adware surges The post 49 Disguised Adware Apps With Optimized […]
New Exploit Kit Capesand Reuses Old and New Public Exploits and Tools, Blockchain Ruse November 5, 2019
We discovered a new exploit kit named Capesand in October 2019. Capesand attempts to exploit recent vulnerabilities in Adobe Flash and Microsoft Internet Explorer (IE). Based on our investigation, it also exploits a 2015 vulnerability for IE. It seems the cybercriminals behind the exploit kit are continuously developing it and are reusing source code from […]
Current and Future Hacks and Attacks that Threaten Esports October 29, 2019
Cybercriminals will increasingly target the esports industry over the next three years. Many underground forums already have sections dedicated to gaming or esports sales, and the goods and services offered in these forums generate a lot of interest. The post Current and Future Hacks and Attacks that Threaten Esports appeared first on .
AutoIT-compiled Negasteal/Agent Tesla, Ave Maria Delivered via Malspam October 25, 2019
By Miguel Carlo Ang and Earle Maui Earnshaw We recently saw a malicious spam campaign that has AutoIT-compiled payloads – the trojan spy Negasteal or Agent Tesla (detected by Trend Micro as TrojanSpy.Win32.NEGASTEAL.DOCGC), and remote access trojan (RAT) Ave Maria or Warzone (TrojanSpy.Win32.AVEMARIA.T) – in our honeypots. The upgrading of payloads from a typical trojan... […]
Fake Photo Beautification Apps on Google Play can Read SMS Verification Code to Trigger Wireless Application Protocol (WAP)/Carrier Billing October 18, 2019
We found an app on Google Play named “Yellow Camera”, which poses as a camera and photo beautification or editing app embedded with a routine of reading SMS verification codes from the System Notifications, and, in turn, activate a Wireless Application Protocol (WAP) billing. We disclosed our findings to Google, and the app, along with […]
CVE-2019-16928: Exploiting an Exim Vulnerability via EHLO Strings October 10, 2019
In September, security researchers discovered the existence of CVE-2019-16928, a vulnerability involving the mail transfer agent Exim. Exim accounts for over 50% of publicly reachable mail servers on the internet. What makes the bug particularly noteworthy is that threat actors could exploit it to perform denial of service (DoS) or possibly even remote code execution […]
FIN6 Compromised E-commerce Platform via Magecart to Inject Credit Card Skimmers Into Thousands of Online Shops October 10, 2019
We discovered that the online credit card skimming attack known as Magecart or E-Skimming was actively operating on 3,126 online shops. The post FIN6 Compromised E-commerce Platform via Magecart to Inject Credit Card Skimmers Into Thousands of Online Shops appeared first on .