900,000 Germans knocked offline, as critical router flaw exploited
As many as 900,000 Deutsche Telekom customers were knocked offline on Sunday and Monday as an attempt was made to hijack broadband routers into a botnet.
Malware
MailChimp accounts hacked to spam out malicious emails
Hackers broke into the MailChimp accounts of some businesses, and send out malicious invoice emails to subscribers... but that doesn't mean that MailChimp suffered a serious security breach. Once again, two-factor authentication could have saved users' bacon.
The odd, 8-year legacy of the Conficker worm
The Conficker worm was huge news when it emerged towards the end of 2008, exploiting millions of Windows devices. Today, it remains one of the most pervasive malware families around the globe.
Sednit: A very digested read
This feature offers a very digested read of ESET's trilogy of research papers on Sednit, one of the most notorious groups of cyberattackers in the world.
Tesco Bank not alone in being targeted by Retefe malware
Tesco Bank, which recently saw thousands of its customers lose funds to cybercriminals, has been found on the target list of the so-called Retefe malware.
How to do an APK Analysis Using AppMon
There are a great many tools available to help quickly analyze the behavior of mobile malware samples. In the case of Android, one such app is AppMon.
Flashback Tuesday: The Morris Worm
On November 2nd 1988, the Morris Worm was released, bringing the internet to an effective standstill. It was a seminal moment in internet history.
Linux/Moose: Still breathing
For the past year, ESET and the security firm GoSecure combined their skills in order to research Linux/Moose further. Here's some of what was uncovered.
A history of mobile malware from Cabir to SMS Thief
As we continue to do more things with our smartphones, the threat posed by mobile malware increases. Here's a short history of its development.
Trick or threat? How zombie IoT devices surprised the internet
It seems the current DDoS tactics from cybercriminals is to gain control over millions of IoT devices and direct their power towards any target they choose.
Lifting the lid on Sednit: A closer look at the software it uses
ESET's threat analysts have taken a closer look at the software used by Sednit to spy on its targets and steal confidential information.
New ESET research paper puts Sednit under the microscope
Security researchers at ESET have released their latest research into the notorious and highly experienced Sednit cyberespionage group.
Flashback Friday: SQL Slammer
Within a few hours of being released in the winter of 2003, SQL Slammer had brought the internet to something of a standstill. We look back at this notable worm.
Book of Eli: African targeted attacks
ESET's latest research analyzes a piece of malware active since 2012, but which has targeted one specific country – Libya.
OSX/Keydnap spreads via signed Transmission application
During the last hours, OSX/Keydnap was distributed on a trusted website, which turned out to be “something else”. It spread via a recompiled version of the otherwise legitimate open source BitTorrent client application Transmission and distributed on their official website.
Nemucod serves nasty package: Ransomware and ad-clickers
The operators of the notorious trojan downloader Nemucod seem to have stepped up their game, serving their victims with ransomware and ad-clickers.
Nemucod now spreading banking trojans in Brazil
On the morning of Friday August 12th, ESET researchers noticed a huge outbreak of a new Spy.Banker variant, detected as Spy.Banker.ADEA. It happened at around 12pm CET.
QuadRooter: Unfortunately, you can’t have it patched for now
ESET researchers have spotted fake patch apps for Android – probably the first ever malicious mobile apps masquerading as a patch for a recently discovered vulnerability.
Nemucod is back and serving an ad-clicking backdoor instead of ransomware
The trojan downloader Nemucod is back with a new campaign. However, it has changed the payload served to its victims – ransomware is not its go-to malware.
Fake Prisma apps found on Google Play
ESET researchers have discovered fake Prisma apps of different types, including several dangerous trojan downloaders. The Google Play security team has since removed them.