Linux Mint site hacked, users unwittingly download backdoored operating system

Linux users should not fool themselves into believing that they are somehow magically immune from malware attacks.

‘Application not compatible’: Bayrob may be stealing your info

In this post, ESET’s Josep Albors analyzes Bayrob, a trojan that has been intensely targeting users across the world since mid-December, 2015.

BlackEnergy and the Ukrainian power outage: What we really know

Robert Lipovsky, a senior malware researcher at ESET, offers his expert insight into the recent discovery of BlackEnergy malware in Ukrainian energy distribution companies.

Gozi trojan coder free after being sentenced to time served

Deniss Calovskis, one of the men found to be responsible for the Gozi trojan, is free to return home to Latvia after being sentenced to time served.

Europol makes 12 arrests in Remote Access Trojan crackdown

Europol have been working alongside a number of European law enforcement authorities in an attempt to crackdown against the use of Remote Access Trojans.

Multi-stage exploit installing trojan

Earlier this year, a new type of trojan caught the attention of ESET researchers. This article will take a deep dive into how the exploit works and briefly describe the final payload.

Android trojan drops in, despite Google’s Bouncer

ESET recently discovered an interesting stealth attack on Android users, an app that is a regular game but with an interesting addition: the application was bundled with another application.

The Trojan Games: Odlanor malware cheats at poker

Every now and again, ESET comes across an attack that “stands out”. Odlanor malware fits that bill – this unique trojan targets players of online poker.

Carbanak gang is back and packing new guns

A few days ago, CSIS published details about new Carbanak samples found in the wild. In this blog we examine the latest developments in the Carbanak story.

Bundestag computer system goes offline

The computer system in the Bundestag is now offline, to allow technicians to perform essential maintenance work.

Porn clicker keeps infecting apps on Google Play

A recently identified trojan porn clicker is still infecting apps on Google Play.

Steam gamers targeted with ‘free screensaver’ phishing scam

Gamers on the popular Steam gaming service have been targeted with phishing scams via the service’s popular Marketplace – with apparent ‘bargains’ offering a sting in the tail.

Copyright emails ‘poisoned with Trojan’

Emails warning internet users that they have violated copyright and owe companies such as Sony and Paramount a cash settlement have been circulating widely in Germany – but the shock tactic is a scam.

Corkow: Analysis of a business-oriented banking Trojan

Win32/Corkow is banking malware with a focus on corporate banking users. We can confirm that several thousand users, mostly in Russia and Ukraine, were victims of the Trojan in 2013. In this post, we expand on its unique functionality.

Corkow – the lesser-known Bitcoin-curious cousin of the Russian banking Trojan family

A little-known banking trojan, developed in Russia, has managed to infect thousands of victims’ computers without the knowledge of their owners. Graham Cluley takes a closer look.

Pat Garratt: PC gamers will always be easy prey for cyber gangs – but it’s not ALL our fault, says industry veteran

Patrick Garratt is a 15-year veteran of the gaming industry, having been behind the launches of major news sites such as Eurogamer and VG247 – but in the DIY, anything-goes world of PC gaming, even he still falls for a scam or two. Is it REALLY his fault, though?

Gamers warned after hi-tech malware leapfrogs World of Warcraft’s security with fake website

Players of the hit game have been targeted with a Trojan disguised as a semi-official add-on client for the game, made by Curse – but it is fake, laced with a Trojan which steals passwords, account emails and authenticator information at once, Blizzard said.

When malware goes bad: an historical sampler

A look back at malware failures, malicious code that did not work out as well as the folks behind it had hoped. Can malware spread to quickly for its own good? Can malware authors ever test their wares well enough to work perfectly?

Win32/Napolar – A new bot on the block

There is a new bot on the block. ESET identifies it as Win32/Napolar while its author calls it solarbot. This piece of malware came to our attention mid-August because of its interesting anti-debugging and code injection techniques.

Carberp source code leak “could lead to new wave of attacks”

The source code for banking malware Carberp has been released online – raising the possibility a new wave of attacks using variants of the sophisticated Trojan.

Follow us

Copyright © 2016 ESET, All Rights Reserved.