category

Malware

Stegano exploit kit poisoning pixels

Visiting popular websites and getting infected without any interaction? ESET explains how the stealthy Stegano exploit kit, hiding in the pixels of malicious ads, is capable of performing this dirty job.

Dorkbot: Life after disruption

A year after its disruption on 2nd December 2015, We Live Security looks at life after Dorkbot.

Avalanche takedown: Check if you are safe

Earlier this week coordinated law enforcement action took down the Avalanche fast-flux network. ESET has been assisting in the cleanup.

900,000 Germans knocked offline, as critical router flaw exploited

As many as 900,000 Deutsche Telekom customers were knocked offline on Sunday and Monday as an attempt was made to hijack broadband routers into a botnet.

MailChimp accounts hacked to spam out malicious emails

Hackers broke into the MailChimp accounts of some businesses, and send out malicious invoice emails to subscribers… but that doesn’t mean that MailChimp suffered a serious security breach.

Once again, two-factor authentication could have saved users’ bacon.

The odd, 8-year legacy of the Conficker worm

The Conficker worm was huge news when it emerged towards the end of 2008, exploiting millions of Windows devices. Today, it remains one of the most pervasive malware families around the globe.

Sednit: A very digested read

This feature offers a very digested read of ESET’s trilogy of research papers on Sednit, one of the most notorious groups of cyberattackers in the world.

Tesco Bank not alone in being targeted by Retefe malware

Tesco Bank, which recently saw thousands of its customers lose funds to cybercriminals, has been found on the target list of the so-called Retefe malware.

How to do an APK Analysis Using AppMon

There are a great many tools available to help quickly analyze the behavior of mobile malware samples. In the case of Android, one such app is AppMon.

Flashback Tuesday: The Morris Worm

On November 2nd 1988, the Morris Worm was released, bringing the internet to an effective standstill. It was a seminal moment in internet history.

Linux/Moose: Still breathing

For the past year, ESET and the security firm GoSecure combined their skills in order to research Linux/Moose further. Here’s some of what was uncovered.

A history of mobile malware from Cabir to SMS Thief

As we continue to do more things with our smartphones, the threat posed by mobile malware increases. Here’s a short history of its development.

Trick or threat? How zombie IoT devices surprised the internet

It seems the current DDoS tactics from cybercriminals is to gain control over millions of IoT devices and direct their power towards any target they choose.

Flashback Friday: SQL Slammer

Within a few hours of being released in the winter of 2003, SQL Slammer had brought the internet to something of a standstill. We look back at this notable worm.

Book of Eli: African targeted attacks

ESET’s latest research analyzes a piece of malware active since 2012, but which has targeted one specific country – Libya.

OSX/Keydnap spreads via signed Transmission application

During the last hours, OSX/Keydnap was distributed on a trusted website, which turned out to be “something else”. It spread via a recompiled version of the otherwise legitimate open source BitTorrent client application Transmission and distributed on their official website.

Nemucod serves nasty package: Ransomware and ad-clickers

The operators of the notorious trojan downloader Nemucod seem to have stepped up their game, serving their victims with ransomware and ad-clickers.

Nemucod now spreading banking trojans in Brazil

On the morning of Friday August 12th, ESET researchers noticed a huge outbreak of a new Spy.Banker variant, detected as Spy.Banker.ADEA. It happened at around 12pm CET.

QuadRooter: Unfortunately, you can’t have it patched for now

ESET researchers have spotted fake patch apps for Android – probably the first ever malicious mobile apps masquerading as a patch for a recently discovered vulnerability.

Nemucod is back and serving an ad-clicking backdoor instead of ransomware

The trojan downloader Nemucod is back with a new campaign. However, it has changed the payload served to its victims – ransomware is not its go-to malware.

Follow us

Copyright © 2016 ESET, All Rights Reserved.