Viry a Červi

FIN7 Lures Unwitting Security Pros to Carry Out Ransomware Attacks - 22 Říjen, 2021 - 21:59
The infamous Carbanak operator is looking to juice its ransomware game by recruiting IT staff to its fake Bastion Secure "pen-testing" company.
Kategorie: Viry a Červi

Better late than never: Microsoft rolls out a public preview of E2EE in Teams calls

The Register - Anti-Virus - 22 Říjen, 2021 - 19:28
Only for one-to-one voice and video, mind

Microsoft has finally kicked off the rollout of end-to-end-encryption (E2EE) in its Teams collaboration platform with a public preview of E2EE for one-to-one calls.…

Kategorie: Viry a Červi

REvil Servers Shoved Offline by Governments – But They’ll Be Back, Researchers Say - 22 Říjen, 2021 - 19:01
A multi-country effort has given ransomware gang REvil a taste of its own medicine by pwning its backups and pushing its leak site and Tor payment site offline.
Kategorie: Viry a Červi

Recycled Cobalt Strike key pairs show many crooks are using same cloned installation

The Register - Anti-Virus - 22 Říjen, 2021 - 18:32
Researcher spots RSA tell-tale lurking in plain sight on VirusTotal

Around 1,500 Cobalt Strike beacons uploaded to VirusTotal were reusing the same RSA keys from a cracked version of the software, according to a security researcher who pored through the malware repository.…

Kategorie: Viry a Červi

Cisco SD-WAN Security Bug Allows Root Code Execution - 22 Říjen, 2021 - 16:48
The high-severity bug, tracked as CVE-2021-1529, is an OS command-injection flaw.
Kategorie: Viry a Červi

REvil ransomware gang allegedly forced offline by law enforcement counterattacks

Sophos Naked Security - 22 Říjen, 2021 - 16:03
One down. Lots more to go. Here's what to do...

Threat Actors Abuse Discord to Push Malware - 22 Říjen, 2021 - 13:44
The platform’s Content Delivery Network and core features are being used to send malicious files—including RATs--across its network of 150 million users, putting corporate workplaces at risk.
Kategorie: Viry a Červi

Unhappy customers and their own tricks used against them, REvil ransomware gang reportedly pulled offline by 'multi-country' operations

The Register - Anti-Virus - 22 Říjen, 2021 - 12:43
The second vanishing of the cybergang... for now

As we noted a few days back, notorious ransomware gang REvil "disappeared" again this week. Recent reports have now shed light on why that may be.…

Kategorie: Viry a Červi

How your phone, laptop, or watch can be tracked by their Bluetooth transmissions

The Register - Anti-Virus - 22 Říjen, 2021 - 08:50
Unique fingerprints lurk in radio signals more often than not, it seems

Over the past few years, mobile devices have become increasingly chatty over the Bluetooth Low Energy (BLE) protocol and this turns out to be a somewhat significant privacy risk.…

Kategorie: Viry a Červi

YouTubers fell for shady 'sponsors' who seized, then sold, accounts

The Register - Anti-Virus - 22 Říjen, 2021 - 08:28
Vid-slingers had been asking how this happened for years, even while their channels were spruiking dodgy crypto

After years of complaints from YouTubers, Google has pinpointed the root cause of a series of account hijackings: software sponsorship deals that delivered malware.…

Kategorie: Viry a Červi

U.S. Ban on Sales of Cyberattack Tools Is Anemic, Experts Warn - 21 Říjen, 2021 - 21:41
Meanwhile, Zerodium's quest to buy VPN exploits is problematic, researchers said.
Kategorie: Viry a Červi

TA551 Shifts Tactics to Install Sliver Red-Teaming Tool - 21 Říjen, 2021 - 21:31
A new email campaign from the threat group uses the attack-simulation framework in a likely leadup to ransomware deployment.
Kategorie: Viry a Červi

S3 Ep55: Live malware, global encryption, dating scams, and secret emanations [Podcasts]

Sophos Naked Security - 21 Říjen, 2021 - 20:13
Latest episode - listen now! (And sign up for our forthcoming Live Malware Demo at the same time.)

Gigabyte Allegedly Hit by AvosLocker Ransomware - 21 Říjen, 2021 - 19:33
If AvosLocker stole Gigabyte's master keys, threat actors could force hardware to download fake drivers or BIOS updates in a supply-chain attack a la SolarWinds.
Kategorie: Viry a Červi

We regret to inform you there's an RCE vuln in old version of WinRAR. Yes, the file decompression utility

The Register - Anti-Virus - 21 Říjen, 2021 - 17:25
Update to v6.02 – or don't, but on your head be it

A remote code execution vulnerability existed in an old and free trial version of WinRAR, according to infosec firm Positive Technologies.…

Kategorie: Viry a Červi

Why is Cybersecurity Failing Against Ransomware? - 21 Říjen, 2021 - 15:16
Hardly a week goes by without another major company falling victim to a ransomware attack. Nate Warfield, CTO at Prevailion, discusses the immense challenges in changing that status quo.
Kategorie: Viry a Červi

Ransomware Sinks Teeth into Candy-Corn Maker Ahead of Halloween - 21 Říjen, 2021 - 13:50
Chicago-based Ferrara acknowledged an Oct. 9 attack that encrypted some systems and disrupted production.
Kategorie: Viry a Červi

Research finds consumer-grade IoT devices showing up... on corporate networks

The Register - Anti-Virus - 21 Říjen, 2021 - 11:27
Considering the slack security of such kit, it's a perfect storm

Increasing numbers of "non-business" Internet of Things devices are showing up inside corporate networks, Palo Alto Networks has warned, saying that smart lightbulbs and internet-connected pet feeders may not feature in organisations' threat models.…

Kategorie: Viry a Červi

What is self-learning AI and how does it tackle ransomware?

The Register - Anti-Virus - 21 Říjen, 2021 - 09:30
Darktrace: Why you need defence that operates at machine speed

Sponsored  There used to be two certainties in life - death and taxes - but thanks to online crooks around the world, there's a third: ransomware. This attack mechanism continues to gain traction because of its phenomenal success. Despite admonishments from governments, victims continue to pay up using low-friction cryptocurrency channels, emboldening criminal groups even further.…

Kategorie: Viry a Červi

Uncle Sam to clip wings of Pegasus-like spyware – sorry, 'intrusion software' – with proposed export controls

The Register - Anti-Virus - 21 Říjen, 2021 - 00:09
Surveillance tech faces trade limits as America syncs policy with treaty obligations

More than six years after proposing export restrictions on "intrusion software," the US Commerce Department's Bureau of Industry and Security (BIS) has formulated a rule that it believes balances the latitude required to investigate cyber threats with the need to limit dangerous code.…

Kategorie: Viry a Červi
Syndikovat obsah