ESET research shows that DanaBot operators have been expanding the malware’s scope and possibly cooperating with another criminal group
ESET researchers discovered a set of previously undocumented Linux malware families based on OpenSSH. In the white paper, “The Dark Side of the ForSSHe”, they release analysis of 21 malware families to improve the prevention, detection and remediation of such threats
Emotet starts another massive spam campaign just as the shopping season picks up steam
In August 2018, Sednit’s operators deployed two new Zebrocy components, and since then we have seen an uptick in Zebrocy deployments, with targets in Central Asia, as well as countries in Central and Eastern Europe, notably embassies, ministries of foreign affairs, and diplomats
ESET researchers identified 21 distinct websites that had been compromised including some particularly notable government and media sites
The recent spike in Emotet activity shows that it remains an active threat
Latest ESET research shows just how far attackers will go in order to steal bitcoin from customers of one specific virtual currency exchange
The malicious apps have all been removed from the official Android store but not before the apps were installed by almost 30,000 users
Customers see their admin credentials stolen and their servers infected with Linux/ChachaDDoS
Website altered to serve a malware-tainted version of otherwise legitimate software with the global event in Russia acting as a smokescreen
D-Link and Changing Information Technologies code-signing certificates stolen and abused by highly skilled cyberespionage group focused on East Asia, particularly Taiwan
Entirely new malware family discovered by ESET researchers
ESET researchers have discovered a piece of banking malware that employs a new technique to bypass dedicated browser protection measures
The infamous outbreak may no longer be causing mayhem worldwide but the threat that enabled it is still very much alive and posing a major threat to unpatched and unprotected systems
Zebrocy heavily used by the Sednit group over last two years
Companies should check they are running latest version of WebEx, and beware attacks via the road less travelled.
An interview with ESET’s Lukáš Štefanko on the thin line between what deserves the name “security app” and what can be called fake.
ESET researchers have analyzed a newly discovered set of apps on Google Play, Google's official Android app store, that pose as security applications. Instead of security, all they provide is unwanted ads and ineffective pseudo-security.
Latest ESET research strongly suggests that Glupteba is no longer tied to the infamous Operation Windigo.
ESET researchers dicovered that Trojanized applications used to steal bitcoin were hosted inadvertently by the popular website download.cnet.com.