Sednit adds two zero‑day exploits using ‘Trump’s attack on Syria’ as a decoy
Sednit is back - this time with two more zero-day exploits embedded in a phishing email titled Trump's_Attack_on_Syria_English.docx.
Malware
Malware warning for Mac users, after HandBrake mirror download server hacked
A mirror download server for the popular tool HandBrake video file-transcoding app has been compromised by hackers, who replaced its Mac edition with malware.
Fake Chrome extensions inject code into web pages
Recently, here at our research lab, we have seen an increase in the number of JS/Chromex.Submelius threats detected, says Camilo Gutiérrez Amaya.
Linux Shishiga malware using LUA scripts
The usage of the BitTorrent protocol and Lua modules separates Linux/Shishiga from other types of malware, according to analysis by ESET.
Turn the light on and give me your passwords!
ESET researchers have discovered another banking trojan on Google Play targeting Android users – this time disguised as a Flashlight widget.
Top tip for botnet overlords: Don’t vacation in countries that can extradite you to the United States
There's no doubt that a life of cybercrime can earn its most successful overlords a considerable amount of money, but you will always have to live with the fear that you could be apprehended and - if convicted - spend years in prison.
Sathurbot: Distributed WordPress password attack
This article sheds light on the current ecosystem of the Sathurbot backdoor trojan, in particular exposing its use of torrents as a delivery medium and its distributed brute-forcing of weak WordPress administrator accounts.
IAAF: ‘Fancy Bear’ Sednit behind cyberattack
The IAAF has become the latest organization to fall victim to the cybercriminal gang Sednit.
Don’t pay for what is for free: Malicious Adobe Flash Player app found on Google Play
ESET researchers have discovered a malicious app at Google Play tricking its victims into paying €18 ($19) for Adobe Flash Player.
Malware campaign targets open source developers on GitHub
Be on your guard if you're a developer who uses GitHub - someone could be trying to infect your computer with malware.
16 years of Mac OS X: Secure but not invincible to malware
Mac OS X is still secure 16 years after its creation, but increasingly being targeted by cybercriminals. No operating system is 100% malware-proof.
Flashback Friday: Operation Windigo
In 2014, ESET delivered a comprehensive and detailed report on Operation Windigo. We take a look back at what was documented and what insight was gathered.
New Instagram credential stealers discovered on Google Play
ESET researchers discovered 13 new Instagram credential stealers on Google play and looked into the motivations behind their fraudulent schemes.
Aggressive ad‑displaying Google Play app tricks users into leaving high ratings
ESET researchers have observed an increased number of apps on Google Play using social engineering techniques to boost their ratings, ranging from legitimate apps, through adware to malware.
DNS attacks: How they try to direct you to fake pages
ESET's Josep Albors looks at how DNS attacks will try and direct you to fake pages.
British man arrested after 900,000 broadband routers knocked offline in Germany
A 29-year-old man has been arrested at Luton airport by the UK's National Crime Agency (NCA) in connection with a massive internet attack that disrupted telephone, television and internet services in Germany last November.
Released Android malware source code used to run a banking botnet
ESET researchers have discovered a new variant of botnet-forming Android banking malware based on source code made public a couple of months ago.
Sunny with a chance of stolen credentials: Malicious weather app found on Google Play
ESET has spotted a new banking malware on Google Play. Disguised as a weather forecast app, it steals banking credentials and locks screens.
8 things you should know about spyware
WeLiveSecurity takes a look at what you need to know about spyware – the malware secretly prying on your online activities.
Demystifying targeted malware used against Polish banks
The purpose of this blog is to deliver technical details of an as-yet minimally documented malware that has made headlines in Poland.