Week in security with Tony Anscombe
Android Trojan steals money from PayPal accounts, the next generation of Dark Markets, and the Google+ to shut down earlier after new bug
Latest Articles
Malaysian government targeted with mash‑up espionage toolkit
An interview with ESET researchers Tomáš Gardoň and Filip Kafka on their research of a malware toolkit used in espionage against the Malaysian government
Google+ to shut earlier as new bug exposed data of 52.5 million users
There is no evidence that the flaw was misused during the six days it was alive, said the tech giant
Android Trojan steals money from PayPal accounts even with 2FA on
ESET researchers discovered a new Android Trojan using a novel Accessibility-abusing technique that targets the official PayPal app, and is capable of bypassing PayPal’s two-factor authentication
Next Generation Dark Markets? Think Amazon or eBay for criminals
The “evolution” of these markets is making cybercrime easier than ever before
Week in security with Tony Anscombe
DanaBot operators have been expanding the malware’s scope with new spam-sending capability. ESET researchers discovered a set of previously undocumented Linux malware families based on OpenSSH. Plus fitness-tracking apps use dodgy in-app payments to steal money from unaware iPhone and iPad users
DanaBot evolves beyond banking Trojan with new spam‑sending capability
ESET research shows that DanaBot operators have been expanding the malware’s scope and possibly cooperating with another criminal group
The Dark Side of the ForSSHe
ESET researchers discovered a set of previously undocumented Linux malware families based on OpenSSH. In the white paper, “The Dark Side of the ForSSHe”, they release analysis of 21 malware families to improve the prevention, detection and remediation of such threats
Scam iOS apps promise fitness, steal money instead
Fitness-tracking apps use dodgy in-app payments to steal money from unaware iPhone and iPad users
CyberwarCon – focusing on the impact of cyber‑badness
A welcome return to the hacker conferences of yesteryear
Marriott Starwood data breach: 5 defensive steps travelers should take now
Defensive steps for Marriott Starwood guests worried their personal information may have been compromised by the massive data breach
Cyberattacks on financial sector worries Americans most
A recent survey carried out by ESET has revealed that Americans are worried most about cyberattacks on the financial sector, listing it above attacks against hospitals, voting systems, or energy supply companies
Week in security with Tony Anscombe
International law enforcement swoops on fake ad viewing outfit. Cyber Monday spam from Emotet. German chat site fined after GDPR data breach
US indicts two over SamSam ransomware attacks
The hacking and extortion scheme took place over a 34-month period with the SamSam ransomware affecting over 200 organizations in the US and Canada
3ve – Major online ad fraud operation disrupted
International law enforcement swoops on fake ad viewing outfit
German chat site faces fine under GDPR after data breach
The country’s first fine under GDPR is lower than might have been expected, however, as the company was acknowledged for its post-incident cooperation and enhanced security measures
Smartphone shopping: Avoid the blues on Cyber Monday
As we increasingly make use of our smartphones to satisfy our shopping needs, let’s shine a light on how these hubs of our digital lives can be used to shop securely, on and around a day dedicated to online deals
Week in security with Tony Anscombe
New watering hole attack in Southeast Asia uncovered. The latest on Sednit. Plus some tips for Black Friday shopping
New Yorker accused of stealing $1m from Silicon Valley executive via SIM swap
The suspect is believed to have carried out the scam on no fewer than six executives in the Bay Area, albeit ultimately with varying success
Black Friday and Cyber Monday by Emotet: Filling inboxes with infected XML macros
Emotet starts another massive spam campaign just as the shopping season picks up steam