Viry a Červi

Feds Offer $5M Reward to Nab ‘Evil Corp’ Dridex Hacker

VirusList.com - 5 Prosinec, 2019 - 18:55
Authorities cracked down on cybercrime group Evil Corp. with sanctions and charges against its leader, known for his lavish lifestyle.
Kategorie: Viry a Červi

Cookie-stealing malware wants to know your Facebook ad budget

Sophos Naked Security - 5 Prosinec, 2019 - 18:37
The AdKoob malware that sneakily peeks at how much you're spending on ads is back.

iCloud-hacking politician to be sentenced on Christmas eve

Sophos Naked Security - 5 Prosinec, 2019 - 18:09
Former Dutch city council member Mitchel van der K invaded hundreds of iCloud accounts “frequently and repeatedly”.

Machine-raiding Python libraries squashed by community

Sophos Naked Security - 5 Prosinec, 2019 - 17:55
Python developers have once again fallen victim to malicious software libraries lurking in their favourite package manager.

Feds slap $5m bounty on 'Evil Corp' Russian duo accused of running ZeuS, Dridex banking trojans

The Register - Anti-Virus - 5 Prosinec, 2019 - 17:49
Account-draining malware masterminds charged but remain in motherland

US prosecutors have slapped a $5m bounty on the heads of two Russian nationals they claim are part of the malware gang behind the banking trojans ZeuS and Dridex.…

Kategorie: Viry a Červi

HackerOne Breach Leads to $20,000 Bounty Reward

VirusList.com - 5 Prosinec, 2019 - 17:31
HackerOne has paid out $20,000 to a bounty hunter who discovered a session cookie issue, due to "human error," on the bug bounty platform.
Kategorie: Viry a Červi

Critical DoS messaging flaw fixed in December Android update

Sophos Naked Security - 5 Prosinec, 2019 - 17:25
Android’s December 2019 updates arrived this week, patching a small list of system and Qualcomm flaws across the operating system’s two patch levels.

OpenBSD Hit with Authentication, LPE Bugs

VirusList.com - 5 Prosinec, 2019 - 17:06
The authentication bypass (CVE-2019-19521) is remotely exploitable.
Kategorie: Viry a Červi

How to fool infosec wonks into pinning a cyber attack on China, Russia, Iran, whomever

The Register - Anti-Virus - 5 Prosinec, 2019 - 16:44
Learning points, not an instruction manual

Black Hat Europe  Faking digital evidence during a cyber attack – planting a false flag – is simple if you know how, as noted infosec veteran Jake Williams told London's Black Hat Europe conference.…

Kategorie: Viry a Červi

Yodel parcel tracking app blabs about other people’s parcels

Sophos Naked Security - 5 Prosinec, 2019 - 16:31
Yodel's mobile parcel delivery app was leaking people's delivery data to others using the app, a security researcher discovered.

IM RAT spy tool seller raided, busted, kicked offline

Sophos Naked Security - 5 Prosinec, 2019 - 16:24
The spyware gave complete control of victimized computers, sold for as little as$25, and was bought by 14,500 hackers worldwide.

Oil be damned: Iran-based crooks flinging malware at Middle Eastern energy plants again – research

The Register - Anti-Virus - 5 Prosinec, 2019 - 13:07
ZeroCleare wipes up where Shamoon left off

An Iran-based hacking crew long known to target energy facilities in neighboring Middle Eastern countries is believed to be launching new attacks.…

Kategorie: Viry a Červi

‘Ultimate’ MiTM Attack Steals $1M from Israeli Startup

VirusList.com - 5 Prosinec, 2019 - 12:44
Researchers uncovers “ultimate man-in-the-middle attack” that used an elaborate spoofing campaign to fool a Chinese VC firm and rip off an emerging business.
Kategorie: Viry a Červi

VB2019 paper: The push from fiction for increased surveillance, and its impact on privacy

Virus Bulletin News - 5 Prosinec, 2019 - 12:29
In a paper presented at VB2019 in London, researchers Miriam Cihodariu (Heimdal Security) and Andrei Bogdan Brad (Code4Romania) looked at how surveillance is represented in fiction and how these representations are shaping people's attitudes to surveillance in current legal debates. Today we publish both their paper and the recording of Miriam presenting the paper in London.

Read more
Kategorie: Viry a Červi

Atlassian scrambles to fix zero-day security hole accidentally disclosed on Twitter

The Register - Anti-Virus - 5 Prosinec, 2019 - 01:55
Exposed private cert key may also be an issue for IBM Aspera

Updated  Twitter security celeb SwiftOnSecurity on Tuesday inadvertently disclosed a zero-day vulnerability affecting enterprise software biz Atlassian, a flaw that may be echoed in IBM's Aspera software.…

Kategorie: Viry a Červi

Lazarus group goes back to the Apple orchard with new macOS trojan

The Register - Anti-Virus - 5 Prosinec, 2019 - 01:28
In-memory malware a first for suspected Nork hacking crew

The Lazarus group, which has been named as one of North Korea's state-sponsored hacking teams, has been found to be using new tactics to infect macOS machines.…

Kategorie: Viry a Červi

ThreatList: 90% of SMBs Believe Nation-State Actors Are Targeting Them

VirusList.com - 4 Prosinec, 2019 - 23:11
Larger SMBs are more likely to feel targeted by APTs.
Kategorie: Viry a Červi

Nebraska Medicine Breached By Rogue Employee

VirusList.com - 4 Prosinec, 2019 - 22:11
Nebraska Medicine is warning that a rogue, former employee accessed patients' medical records, Social Security numbers and more.
Kategorie: Viry a Červi

‘Highly Competitive’ Buer Loader Emerges in Underground Markets

VirusList.com - 4 Prosinec, 2019 - 19:32
A previously undocumented loader has been discovered in several recent malware campaigns and being sold on underground markets.
Kategorie: Viry a Červi
Syndikovat obsah