A tale of two zero‑days
Double zero-day vulnerabilities fused into one. A mysterious sample enables attackers to execute arbitrary code with the highest privileges on intended targets
Latest Articles
WannaCryptor: The curious tale of a ravenous cryptoworm
Do you still remember how WannaCryptor ran its – winding – course? It was a tale that revealed a number of intriguing plot lines amid the ransomworm’s numerous twists and turns.
Are firms and regulators prepared for GDPR?
The answer may hinge on if you're a glass-half-full or glass-half-empty kind of person. While we’re at it, how about regulators’ level of preparedness, anyway?
12 months on, what are the lessons learned from WannaCryptor?
Time does fly! It feels like only yesterday that a new strain of hitherto little-known malware achieved celebrity status among global ransomware campaigns
One year later: EternalBlue exploit more popular now than during WannaCryptor outbreak
The infamous outbreak may no longer be causing mayhem worldwide but the threat that enabled it is still very much alive and posing a major threat to unpatched and unprotected systems
Inside fake Interac transfer and tax refund SMS phishing
It’s tax season in Canada and scammers are using fake tax refund forms to lure victims into supplying their personal information via phishing pages
Tech support scams and the call of the void
The importance of providing the best possible after-sales service to customers
Twitter advises all users to change passwords after glitch
A bug within Twitter’s internal systems exposed, in plain text, the passwords of an undisclosed number of users.
Google rolls out .app domains with built‑in HTTPS
The move is part of the company’s HTTPS-everywhere vision for the internet
Recycling is a must, but why would you reuse your password?
World Password Day, celebrated on the first Thursday of every May, is a timely reminder of the fact that our passwords are the key to a wealth of personal information about us.
Wi‑Fi or Ethernet: Which is faster and which is safer?
There is a lot of debate about Wi-Fi speeds and whether they can offer higher potential speeds than a cable connection, but in practice Ethernet connections turn out to be not only faster but also safer.
Controlling children’s use of technology: a preventive measure or an invasion of privacy?
How to use parental control apps to protect children and the fine line that exists between controlling the use of technology and invasion of privacy
This test will tell you how likely you are to fall for fraud
The questionnaire measures a range of personality traits to distinguish people who are more prone to taking the bait than others.
World’s biggest DDoS marketplace taken down, six suspected admins nabbed
For as little as $15 per month, anyone with a criminal bent could rent the services of webstresser.org to take down a targeted site.
RSA 2018: Behind the lines
ESET's Senior Security Researcher Stephen Cobb reflects on RSA 2018 and the state of the cybersecurity industry
Is “Malware of Mass Disruption” the WMD of the future? Insights from the stage at RSA 2018
ESET's Global Security Evangelist Tony Anscombe expands on his theory
Ethereum cryptocurrency wallets raided after Amazon’s internet domain service hijacked
Approximately US $150,000 worth of Ethereum-based cryptocurrency stolen.
Over 3,300 Android apps may be violating kids’ privacy, study says
Researchers find that a great portion of popular children’s apps may run afoul of US privacy legislation by improperly collecting data – albeit often probably unintentionally. A response from Google to the unflattering findings wasn’t long in coming.
Sednit update: Analysis of Zebrocy
Zebrocy heavily used by the Sednit group over last two years
Ransomware runs rampant in 2017, Verizon report finds
Social engineering attacks that involve pretexting nearly tripled on an annual basis while phishing simulations show that curiosity gets the better of 4% of people.