Malware
Latest Articles
Week in security with Tony Anscombe
DanaBot operators have been expanding the malware’s scope with new spam-sending capability. ESET researchers discovered a set of previously undocumented Linux malware families based on OpenSSH. Plus fitness-tracking apps use dodgy in-app payments to steal money from unaware iPhone and iPad users
DanaBot evolves beyond banking Trojan with new spam-sending capability
ESET research shows that DanaBot operators have been expanding the malware’s scope and possibly cooperating with another criminal group
The Dark Side of the ForSSHe
ESET researchers discovered a set of previously undocumented Linux malware families based on OpenSSH. In the white paper, “The Dark Side of the ForSSHe”, they release analysis of 21 malware families to improve the prevention, detection and remediation of such threats
Scam iOS apps promise fitness, steal money instead
Fitness-tracking apps use dodgy in-app payments to steal money from unaware iPhone and iPad users
CyberwarCon – focusing on the impact of cyber-badness
A welcome return to the hacker conferences of yesteryear
Marriott Starwood data breach: 5 defensive steps travelers should take now
Defensive steps for Marriott Starwood guests worried their personal information may have been compromised by the massive data breach
Cyberattacks on financial sector worries Americans most
A recent survey carried out by ESET has revealed that Americans are worried most about cyberattacks on the financial sector, listing it above attacks against hospitals, voting systems, or energy supply companies
Week in security with Tony Anscombe
International law enforcement swoops on fake ad viewing outfit. Cyber Monday spam from Emotet. German chat site fined after GDPR data breach
US indicts two over SamSam ransomware attacks
The hacking and extortion scheme took place over a 34-month period with the SamSam ransomware affecting over 200 organizations in the US and Canada
3ve – Major online ad fraud operation disrupted
International law enforcement swoops on fake ad viewing outfit
German chat site faces fine under GDPR after data breach
The country’s first fine under GDPR is lower than might have been expected, however, as the company was acknowledged for its post-incident cooperation and enhanced security measures
Smartphone shopping: Avoid the blues on Cyber Monday
As we increasingly make use of our smartphones to satisfy our shopping needs, let’s shine a light on how these hubs of our digital lives can be used to shop securely, on and around a day dedicated to online deals
Week in security with Tony Anscombe
New watering hole attack in Southeast Asia uncovered. The latest on Sednit. Plus some tips for Black Friday shopping
New Yorker accused of stealing $1m from Silicon Valley executive via SIM swap
The suspect is believed to have carried out the scam on no fewer than six executives in the Bay Area, albeit ultimately with varying success
Black Friday and Cyber Monday by Emotet: Filling inboxes with infected XML macros
Emotet starts another massive spam campaign just as the shopping season picks up steam
Good deal hunting: Staying safe on Black Friday
As the unofficial beginning of the holiday shopping season catches us up in the frenetic hunt for all those fantastic bargains, the shopping bonanza presents a host of risks to your online safety. Here are a few tips for going on a shopping spree and staying safe
Who needs passwords? Microsoft now lets you in with your face or security key
The software giant takes passwords one step closer to obsolescence as it now enables users to log into their Microsoft accounts with more modern forms of authentication
Two Brits jailed for TalkTalk hack
The breach exposed the personal data of 160,000 people and cost the telecom company £77 million
Sednit: What’s going on with Zebrocy?
In August 2018, Sednit’s operators deployed two new Zebrocy components, and since then we have seen an uptick in Zebrocy deployments, with targets in Central Asia, as well as countries in Central and Eastern Europe, notably embassies, ministries of foreign affairs, and diplomats
OceanLotus: New watering hole attack in Southeast Asia
ESET researchers identified 21 distinct websites that had been compromised including some particularly notable government and media sites