category
Malware

Attack ‘bypasses’ Microsoft’s zero-day protection tool

Researchers have demonstrated an attack that completely bypasses the protections offered by EMET – a Microsoft toolkit used to provide safeguards against zero-day attacks, according to Ars Technica.

Most small-office routers have ‘critical’ vulnerabilities as mysterious ‘Moon’ worm spreads

A large majority of routers used in small offices are plagued with security vulnerabilities – with up to 80% of small office/home office models having critical security weaknesses, according to a survey by Tripwire.

An In-depth Analysis of Linux/Ebury

In this blog post, we provide an in-depth analysis of Linux/Ebury – the most sophisticated Linux backdoor ever seen by our researchers. It is built to steal OpenSSH credentials and maintain access to a compromised server.

QR codes pose hidden danger to smartphone users, researchers claim

The increasing use of QR codes as a way to add interactive elements, apps and websites to display advertising, competitions or print magazines could pose a risk to smartphone users, Australian researchers at Murdoch University have warned

Mysterious ‘Moon’ worm spreads into many Linksys routers – and hunts new victims

Malware dubbed ‘Moon’ due to images found within the malware has spread rapidly through many models of Linksys routers – even ones protected by passwords – it’s still not clear how many are infected – or if the malware has a purpose beyond simply spreading.

Critical IE and other flaws discovered. Patch your systems now, says Microsoft

If your system administrator looks a little frazzled this week, be nice to him or her and don’t grumble too much about the photocopier being jammed. It may be that they have more serious issues on their mind.

Corkow – the lesser-known Bitcoin-curious cousin of the Russian banking Trojan family

A little-known banking trojan, developed in Russia, has managed to infect thousands of victims’ computers without the knowledge of their owners. Graham Cluley takes a closer look.

American law firm admits entire server of legal files fell victim to Cryptolocker

A small American law firm has admitted that every document on a server at the North Carolina company has fallen prey to the Cryptolocker ransomware, according to a report by local station WSO CTV.

Facebook’s ‘A Look Back’ video used as bait for malware, report claims

A fake version of Facebook’s 10th anniversary celebration video page, ‘A Look Back’ is spreading via the social network, with users directed instead to another website, where they are prompted to download files.

U.S. hotel firm ‘knew of credit card breach for two weeks’ before going public

Managers at White Lodging, a hotel management firm that works with various brands including Hilton, Marriott, Westin, Sheraton and Hyatt, may have known of a major credit card data breach for two weeks before details were made public.

Target attackers ‘broke in using log-in from air-con contractor’

Attackers involved in the Target breach, which led to the theft of 40 million debit and credit card details late last year, broke into the retailer’s network via a heating and air-conditioning contractor, according to a new report.

Zombie detector: Half-century-old tool may help sniff out botnets, researchers claim

A statistical tool first used in 1966 and currently used in speech and gesture recognition may hold a key to sniffing out botnets – by predicting the likely “next move” of infected PCs and the healthy computers around them, researchers have claimed.

Russian creator of ‘SpyEye’ malware pleads guilty to bank fraud

The FBI has announced the arrest and charge of Alexsandr Panin, 24, a Russian hacker who developed the SpyEye trojan and used it to steal financial information and money from around the world.

Facebook pays record sum to hacker who exposed login bug

Facebook has given out a record fee for bug discovery, after a Brazilian security researcher exposed a vulnerability that could have been used to deliver malware to millions of Facebook users.

Neiman Marcus breach even worse than first thought – million cards hit over several months

Luxury retailer Neiman Marcus has revealed that a breach which led to customer payment cards being used for fraud after shopping in its stores was far worse than first revealed – with 1.1 million cards affected over several months.

Cash crash ahead? ‘Death’ of Windows XP could leave 95% of world’s ATMs vulnerable

Banks around the world face a looming deadline to upgrade their ATMS – 95% of machines worldwide run Windows XP, which Microsoft will cease to support on April 8. Just 15% of America’s ATMs are expected to upgrade by that point.

Vietnamese malware : ‘Single post’ enough to trigger spyware attacks against U.S. bloggers, EFF claims

A Californian blogger was among victims of a malware attack which targeted critics of the communist state in Vietnam, as well as staff at U.S. privacy group Electronic Frontier Foundation.

Boaxxe adware: ‘A good advert sells the product without drawing attention to itself’ Part 2

In this post, we examine the complex it fits into a larger click fraud ecosystem, where users can be redirected either automatically, or through search engines browsing, to advertisement websites.

Huge shortage of cyber-defenders as threat levels ‘highest since records began’, Cisco report warns

Cisco claims in its report that cybercrime is now a global, professional industry – and there is a worldwide shortage of professionals able to defend against such attacks, with new technologies in malware meaning that there is a shortfall of a million IT professionals.

Microsoft offers brief reprieve to Windows XP users – with antimalware updates until July 2015

The computer giant announced the change of policy in an official blog post in which it said that although XP was no longer “a supported operating system”, security updates would continue until July 2015.

Follow Us

Automatically receive new posts via email:

Delivered by FeedBurner

4 articles related to:
Hot Topic
25 Feb 2014
ESET Virus Radar

Archives

Select month
Copyright © 2014 ESET, All Rights Reserved.