Viry a Červi

The infamous Carbanak operator is looking to juice its ransomware game by recruiting IT staff to its fake Bastion Secure "pen-testing" company.

Only for one-to-one voice and video, mind

Microsoft has finally kicked off the rollout of end-to-end-encryption (E2EE) in its Teams collaboration platform with a public preview of E2EE for one-to-one calls.…

A multi-country effort has given ransomware gang REvil a taste of its own medicine by pwning its backups and pushing its leak site and Tor payment site offline.

Researcher spots RSA tell-tale lurking in plain sight on VirusTotal

Around 1,500 Cobalt Strike beacons uploaded to VirusTotal were reusing the same RSA keys from a cracked version of the software, according to a security researcher who pored through the malware repository.…

The high-severity bug, tracked as CVE-2021-1529, is an OS command-injection flaw.

One down. Lots more to go. Here's what to do...

The platform’s Content Delivery Network and core features are being used to send malicious files—including RATs--across its network of 150 million users, putting corporate workplaces at risk.

The second vanishing of the cybergang... for now

As we noted a few days back, notorious ransomware gang REvil "disappeared" again this week. Recent reports have now shed light on why that may be.…

Unique fingerprints lurk in radio signals more often than not, it seems

Over the past few years, mobile devices have become increasingly chatty over the Bluetooth Low Energy (BLE) protocol and this turns out to be a somewhat significant privacy risk.…

Vid-slingers had been asking how this happened for years, even while their channels were spruiking dodgy crypto

After years of complaints from YouTubers, Google has pinpointed the root cause of a series of account hijackings: software sponsorship deals that delivered malware.…

Meanwhile, Zerodium's quest to buy VPN exploits is problematic, researchers said.

A new email campaign from the threat group uses the attack-simulation framework in a likely leadup to ransomware deployment.

Latest episode - listen now! (And sign up for our forthcoming Live Malware Demo at the same time.)

If AvosLocker stole Gigabyte's master keys, threat actors could force hardware to download fake drivers or BIOS updates in a supply-chain attack a la SolarWinds.

Update to v6.02 – or don't, but on your head be it

A remote code execution vulnerability existed in an old and free trial version of WinRAR, according to infosec firm Positive Technologies.…

Hardly a week goes by without another major company falling victim to a ransomware attack. Nate Warfield, CTO at Prevailion, discusses the immense challenges in changing that status quo.

Chicago-based Ferrara acknowledged an Oct. 9 attack that encrypted some systems and disrupted production.

Considering the slack security of such kit, it's a perfect storm

Increasing numbers of "non-business" Internet of Things devices are showing up inside corporate networks, Palo Alto Networks has warned, saying that smart lightbulbs and internet-connected pet feeders may not feature in organisations' threat models.…

Darktrace: Why you need defence that operates at machine speed

Sponsored  There used to be two certainties in life - death and taxes - but thanks to online crooks around the world, there's a third: ransomware. This attack mechanism continues to gain traction because of its phenomenal success. Despite admonishments from governments, victims continue to pay up using low-friction cryptocurrency channels, emboldening criminal groups even further.…

Surveillance tech faces trade limits as America syncs policy with treaty obligations

More than six years after proposing export restrictions on "intrusion software," the US Commerce Department's Bureau of Industry and Security (BIS) has formulated a rule that it believes balances the latitude required to investigate cyber threats with the need to limit dangerous code.…