Viry a Červi

“Bitcoins for cash in bags” trader gets 12 months in prison

Sophos Naked Security - 12 Červenec, 2018 - 20:06
This former stockbroker dealt with murky clients, including one she knew only as "David", aka "Pirate Sh*t".

Coinvault, the court case

Kaspersky Securelist - 12 Červenec, 2018 - 20:00

Today, after almost 3 years of waiting, it was finally the day of the trial. In the Netherlands, where the whole case took place, the hearings are open to the public. Meaning anyone who is interested can visit. And it was quite busy. Because besides the suspects, their lawyers, the judges and the prosecutor there were also several members of the press, a sketch artist (to make a drawing of the suspects), several members of the Dutch police, a few victims and other people who were interested in the case.

The defence started by calling the public prosecution service “niet ontvankelijk” for one of the defendants, meaning they are not allowed to prosecute the case. As a reason there was given that one of the defendants was underage during some of the actions. However, all three of the judges also do cases concerning underaged defendants and after a quick consultation with each other they decided to continue.

The hearing was resumed with what the two brothers were accused of:

  1. Breaking into computers;
  2. Make other people’s work inaccessible;
  3. Extortion of 1295 people.

For us it was quite interesting to understand how they came up with the number of 1295 people, because when we released our final decryption tool we had at least 14k keys. So most likely much more people were infected. In fact, we think a zero could be added to 1295 to give a more realistic view on the number of victims.

The judge then went on with was basically a summary of the case. What happened, why did they do certain things etc. We as researchers often guess about motives behind actions, but we can never be 100% certain until there is a confession of the criminal. One of such an example is the amount of ransom to pay. During the time this all took place the brothers wanted 1 bitcoin as a ransom, which was worth about 220 euro at the time. We always say that we believe ransomware criminals choose a relatively small amount to make it more attractive to pay. When the judge asked the same question they gave exactly this answer. Always good to see your theories being confirmed

Cisco Patches High-Severity Bug in VoIP Phones

VirusList.com - 12 Červenec, 2018 - 18:02
Cisco also patched three medium-security flaws in its network security offerings; and, it issued a fix for a high-severity bug in its platform for mobile operator routers, StarOS.
Kategorie: Viry a Červi

ThreatList: 6-Year-Old Dorkbot Banking Malware Resurfaces as Big Threat

VirusList.com - 12 Červenec, 2018 - 17:49
Old banking malware called Dorkbot has reemerged in 2018 to become a serious threat.
Kategorie: Viry a Červi

Chrome Now Features Site Isolation to Defend Against Spectre

VirusList.com - 12 Červenec, 2018 - 17:37
A new feature called site isolation is being tapped to protect Chrome users against Spectre.
Kategorie: Viry a Červi

Ransomware is so 2017, it's all cryptomining now among the script kiddies

The Register - Anti-Virus - 12 Červenec, 2018 - 16:26
Plus: Hackers take crack at cloud, phones come pre-pwned, malware's going multi-plat

The number of organisations affected by cryptomining malware in the first half of 2018 ramped up to 42 per cent, compared to 20.5 per cent in the second half of 2017, according to a new report from Check Point.…

Kategorie: Viry a Červi

Palo Alto Networks rattles tin, wants $1.5bn for, er, stuff and things

The Register - Anti-Virus - 12 Červenec, 2018 - 15:40
Loan notes to build war chest – yet firm denies it's eyeing up a fresh buyout

Palo Alto Networks is trying to raise $1.5bn in cash for "potential acquisitions" and "strategic transactions", the company said today – though it claims not to have any buyout targets in mind just yet.…

Kategorie: Viry a Červi

What can $10 stretch to these days? Lunch... or access to international airport security systems

The Register - Anti-Virus - 12 Červenec, 2018 - 14:09
Dark web does roaring trade in Remote Desktop Protocol hacks

Dark web shops are selling access to computers on corporate networks for less than the cost of a short cab ride.…

Kategorie: Viry a Červi

Your Google phone will soon screen nuisance calls

Sophos Naked Security - 12 Červenec, 2018 - 13:34
Google is reportedly adding a new feature to its phone app that will please phone users - built-in screening for nuisance callers.

Hackers break into newswire services, trade on what they find

Sophos Naked Security - 12 Červenec, 2018 - 13:23
Some financially-motivated hackers go straight for the money, but others take a more circuitous route, going after information that they can use for profit. That’s what criminals convicted this week did until they were caught in 2015, earning millions in ill-gotten gains.

Default router password leads to spilled military secrets

Sophos Naked Security - 12 Červenec, 2018 - 12:58
The hacker tried selling the US military files for $150 on the dark web, but only undercover analysts paid any attention.

Snakes on a plane! (Stuffed inside a hard drive)

Sophos Naked Security - 12 Červenec, 2018 - 12:24
When we talk about worms and viruses on your hard drive, we ain't talking ball python. Usually. TSA caught the "organic mass" in screening.

Ticketmaster breach 'part of massive bank card slurping campaign'

The Register - Anti-Virus - 12 Červenec, 2018 - 08:32
It gets worse, say researchers

The Ticketmaster breach was not a one-off, but part of a massive digital credit card-siphoning campaign.…

Kategorie: Viry a Červi

Tim? Larry? We need to talk about smartphones and privacy

The Register - Anti-Virus - 12 Červenec, 2018 - 06:14
Congress sends Apple and Alphabet a 'please explain', perhaps because Oracle asked

Oracle’s busy backgrounding about Android privacy last year appears to have helped draw US lawmakers' attention to Google and Apple.…

Kategorie: Viry a Červi

Timehop admits to more data leakage, details GDPR danger

The Register - Anti-Virus - 12 Červenec, 2018 - 05:00
Bad actor was inside social network for months without being detected

Nostalgia aggregator Timehop has revised its advice about the data breach it reported earlier this week.…

Kategorie: Viry a Červi

FBI for the Apple guy: Bloke accused of stealing robo-car tech

The Register - Anti-Virus - 12 Červenec, 2018 - 02:02
Engineer facing trade secrets theft rap for allegedly trying to defect with self-driving designs

An ex-Apple engineer has been hit with trade secret theft charges after allegedly pinching copies and samples of Cupertino's autonomous car technology.…

Kategorie: Viry a Červi

Like my new wheels? All I did was squash a bug, and they gave me $72k

The Register - Anti-Virus - 11 Červenec, 2018 - 23:07
Bug bounty platform reports that vuln hunters are making bank

Vuln hunters brought home the bacon last year, according to figures released today by bug bounty platform HackerOne.…

Kategorie: Viry a Červi

Ticketmaster Breach: Just One Part of a Wide-Ranging Campaign

VirusList.com - 11 Červenec, 2018 - 22:33
A whopping 800 e-commerce sites around the world have been targeted by the Magecart criminal group so far, according to RiskIQ.
Kategorie: Viry a Červi

Multiple Bugs Found in QNAP Q’Center Web Console

VirusList.com - 11 Červenec, 2018 - 21:08
QNAP said in a security advisorythat it has fixed the issues in Q'Center Virtual Appliance, and urged customers to update to the latest version.
Kategorie: Viry a Červi

Deceased Patient Data Being Sold on Dark Web

VirusList.com - 11 Červenec, 2018 - 20:30
Why are hackers selling medical records of deceased patients?
Kategorie: Viry a Červi
Syndikovat obsah