Showing only posts tagged malware. Show all posts.

Microsoft digital certificates have once again been abused to sign malware

Source

Enlarge (credit: Getty Images) Microsoft has once again been caught allowing its legitimate digital certificates to sign malware in the wild, a lapse that allows the malicious files to pass strict security checks designed to prevent them from running on the Windows operating system. Multiple threat actors were involved …

Leaked Signing Keys Are Being Used to Sign Malware

Source

A bunch of Android OEM signing keys have been leaked or stolen, and they are actively being used to sign malware. Łukasz Siewierski, a member of Google’s Android Security Team, has a post on the Android Partner Vulnerability Initiative (AVPI) issue tracker detailing leaked platform certificate keys that …

CryWiper Data Wiper Targeting Russian Sites

Source

Kaspersky is reporting on a data wiper masquerading as ransomware that is targeting local Russian government networks. The Trojan corrupts any data that’s not vital for the functioning of the operating system. It doesn’t affect files with extensions.exe,.dll,.lnk,.sys or.msi, and ignores several …

Never-before-seen malware is nuking data in Russia’s courts and mayors’ offices

Source

Enlarge Mayors' offices and courts in Russia are under attack by never-before-seen malware that poses as ransomware but is actually a wiper that permanently destroys data on an infected system, according to security company Kaspersky and the Izvestia news service. Kaspersky researchers have named the wiper CryWiper, a nod …

Pegasus spyware inquiry targeted by disinformation campaign, say experts

Source

European parliament is investigating powerful surveillance tool used by governments around the world Victims of spyware and a group of security experts have privately warned that a European parliament investigatory committee risks being thrown off course by an alleged “disinformation campaign”. The warning, contained in a letter to MEPs …

Feds say Ukrainian man running malware service amassed 50M unique credentials

Source

Enlarge (credit: Getty Images | Charles O'Rear) Federal prosecutors have charged a 26-year-old Ukrainian national with operating a malware service that was responsible for stealing sensitive data from more than 2 million individuals around the world. Prosecutors in Texas said on Tuesday that Mark Sokolovsky, 26, of Ukraine helped operate …

Never-before-seen malware has infected hundreds of Linux and Windows devices

Source

Enlarge (credit: Getty Images ) Researchers have revealed a never-before-seen piece of cross-platform malware that has infected a wide range of Linux and Windows devices, including small office routers, FreeBSD boxes, and large enterprise servers. Black Lotus Labs, the research arm of security firm Lumen, is calling the malware Chaos …

Trojanized versions of PuTTY utility being used to spread backdoor

Source

Enlarge (credit: Getty Images ) Researchers believe hackers with connections to the North Korean government have been pushing a Trojanized version of the PuTTY networking utility in an attempt to backdoor the network of organizations they want to spy on. Researchers from security firm Mandiant said on Thursday that at …

New Linux malware combines unusual stealth with a full suite of capabilities

Source

Enlarge (credit: Getty Images ) Researchers this week unveiled a new strain of Linux malware that's notable for its stealth and sophistication in infecting both traditional servers and smaller Internet-of-things devices. Dubbed Shikitega by the AT&T Alien Labs researchers who discovered it, the malware is delivered through a multistage …

Organizations are spending billions on malware defense that’s easy to bypass

Source

Enlarge (credit: Getty Images / Aurich Lawson) Last year, organizations spent $2 billion on products that provide Endpoint Detection and Response, a relatively new type of security protection for detecting and blocking malware targeting network-connected devices. EDRs, as they're commonly called, represent a newer approach to malware detection. Static analysis …

CEO of Israeli Pegasus spyware firm NSO to step down

Source

CEO Shalev Hulio is stepping down as part of NSO reorganisation that will see it focus on sales in Nato member countries Israel’s NSO Group, which makes the globally controversial Pegasus spyware said on Sunday its CEO Shalev Hulio would step down as part of a reorganisation. The …

10 malicious Python packages exposed in latest repository attack

Source

Enlarge / Supply-chain attacks, like the latest PyPi discovery, insert malicious code into seemingly functional software packages used by developers. They're becoming increasingly common. (credit: Getty Images) Researchers have discovered yet another set of malicious packages in PyPi, the official and most popular repository for Python programs and code libraries …

« newer articles | page 4 | older articles »