CPL Malware in Brazil: Somewhere Between Banking Trojans and Malicious Emails

Linux/Mumblehard is a family of malware targeting servers running both the Linux and BSD operating systems.

Microsoft recently announced its new patch roll-out strategy for the latest incarnation of the Windows operating system. Aryeh Goretsky considers how the Windows 10 patching process might affect both the enterprise and the home user.

Goretsky, A. Windows 10 patching process may leave enterprises vulnerable to zero-day attacks, March 2015, Virus Bulletin. Copyright is held by Virus Bulletin Ltd, but is made available on this site for personal use free of charge by permission of Virus Bulletin.

The “Trends For 2015 – Targeting the Corporate World” report by the ESET LATAM Research Lab invites you to review some of the most significant cases that affected computer security in 2014, and to consider and present the challenges and threats expected for 2015.

In late 2013, the CryptoLocker ransomware gained a lot of attention. It was hit by Operation Tovar mid-2014. Although they share many similarities, TorrentLocker is a different threat.

These are the slide from a webinar titled Make 2015 More Secure: Lessons from 2014, which was a follow-up to the 2014 Mid-Year Threat Report webinar from this summer.

A review for Virus Bulletin of two recent eBooks that aim to provide security guidance and tips to consumers.

The vivisection of a large Linux server-side credential stealing malware campaign.

The analysis of four not-so-advanced persistent threats that targeted Vietnam and Taiwan.

ESET, the global leader in proactive digital protection with a record 10 years of consecutive VB100 awards for its ESET NOD32 technology, has released today its annual predictions for the threatscape in the upcoming year “Trends 2014 – The Challenge of Internet Privacy”.

Pablo Ramos, Security Researcher for Latin America together with his colleagues, has looked into the chronology of a Skype attack. They have captured their investigation in a dedicated White Paper named Chronology of a Skype Attack: The Rodpicom Worm Propagation.

A new white paper, titled Windows 8.1 Security – New and Improved, looks at the some of the most anticipated—and controversial—security features of this new “.1” point release of Windows 8. The white paper also discusses new risks introduced by Windows 8.1, and looks at whether or not IT shops and users should upgrade.

A new and effective banking trojan has been discovered targeting online banking users in Turkey, the Czech Republic, Portugal and the United Kingdom. It uses very credible-looking phishing-like campaigns, related to trustworthy organizations, to lure victims into running the malware.

Analysis of a banking Trojan using a browser extension as its execution method and spreading via spam, then using a Brazilian government server to collect the victim’s stolen information.

A look at Windows 8 during the first six months of its release. Just how well is it holding up, security-wise? The challenges faced by developers in securing Modern Windows and how piracy in the Windows Store might affect BYOD rollouts in the enterprise.

A report devoted to analysis of one of the stealthiest bootkits ever seen in the wild – Win32/Gapz.

Welcome to the Web 2.0 incarnation of the Misinformation Superhighway. Did you really think that hoaxing had died out?

The ‘PokerAgent’ botnet, which we have tracked in 2012, was designed to harvest Facebook log-on credentials, also collecting information on credit card details linked to the Facebook account and Zynga Poker player stats, presumably with the intention to mug the victims. The threat was mostly active in Israel.

ESET Latin America’s Malware Analysis Lab reviews the year and compiles threat trends for the upcoming season. So how will the 2013 threatscape look like according to the IT security company ESET? It will definitely see major growth of mobile malware and its variants, increased malware propagation via websites, continuing rise of botnets and attacks on the cloud resulting in information leaks.