Web‑hosting firm agrees to pay over $1 million to ransomware extortionists
A variant of the Erebus ransomware has hit a South Korean web hosting company hard, and disrupted the websites of thousands of businesses.
Malware
Industroyer: ICS protocols were developed decades ago with no security in mind
Senior ESET malware researcher Robert Lipovsky discusses Industroyer, the biggest threat to Industrial Control Systems (ICS) since Stuxnet.
Seven years after Stuxnet: Industrial systems security once again in the spotlight
Seven years after Stuxnet first came to light, industrial systems security once again in the spotlight, reports ESET's Robert Lipovsky.
Industroyer: Biggest threat to industrial control systems since Stuxnet
ESET has analyzed a sophisticated and extremely dangerous malware, known as Industroyer, which is designed to disrupt critical industrial processes.
Botnets overshadowed by ransomware (in media)
Regardless of how prominent and effective ransomware appears to be, it is not the most dangerous form of malware.
Sednit adds two zero‑day exploits using ‘Trump’s attack on Syria’ as a decoy
Sednit is back - this time with two more zero-day exploits embedded in a phishing email titled Trump's_Attack_on_Syria_English.docx.
Malware warning for Mac users, after HandBrake mirror download server hacked
A mirror download server for the popular tool HandBrake video file-transcoding app has been compromised by hackers, who replaced its Mac edition with malware.
Fake Chrome extensions inject code into web pages
Recently, here at our research lab, we have seen an increase in the number of JS/Chromex.Submelius threats detected, says Camilo Gutiérrez Amaya.
Linux Shishiga malware using LUA scripts
The usage of the BitTorrent protocol and Lua modules separates Linux/Shishiga from other types of malware, according to analysis by ESET.
Turn the light on and give me your passwords!
ESET researchers have discovered another banking trojan on Google Play targeting Android users – this time disguised as a Flashlight widget.
Top tip for botnet overlords: Don’t vacation in countries that can extradite you to the United States
There's no doubt that a life of cybercrime can earn its most successful overlords a considerable amount of money, but you will always have to live with the fear that you could be apprehended and - if convicted - spend years in prison.
Sathurbot: Distributed WordPress password attack
This article sheds light on the current ecosystem of the Sathurbot backdoor trojan, in particular exposing its use of torrents as a delivery medium and its distributed brute-forcing of weak WordPress administrator accounts.
IAAF: ‘Fancy Bear’ Sednit behind cyberattack
The IAAF has become the latest organization to fall victim to the cybercriminal gang Sednit.
Don’t pay for what is for free: Malicious Adobe Flash Player app found on Google Play
ESET researchers have discovered a malicious app at Google Play tricking its victims into paying €18 ($19) for Adobe Flash Player.
Malware campaign targets open source developers on GitHub
Be on your guard if you're a developer who uses GitHub - someone could be trying to infect your computer with malware.
16 years of Mac OS X: Secure but not invincible to malware
Mac OS X is still secure 16 years after its creation, but increasingly being targeted by cybercriminals. No operating system is 100% malware-proof.
Flashback Friday: Operation Windigo
In 2014, ESET delivered a comprehensive and detailed report on Operation Windigo. We take a look back at what was documented and what insight was gathered.
New Instagram credential stealers discovered on Google Play
ESET researchers discovered 13 new Instagram credential stealers on Google play and looked into the motivations behind their fraudulent schemes.
Aggressive ad‑displaying Google Play app tricks users into leaving high ratings
ESET researchers have observed an increased number of apps on Google Play using social engineering techniques to boost their ratings, ranging from legitimate apps, through adware to malware.
DNS attacks: How they try to direct you to fake pages
ESET's Josep Albors looks at how DNS attacks will try and direct you to fake pages.