Researchers detected the Malware that targets the Russian stock-trading platform QUIK

Security Researcher from Group-IB Group-IB is one of the leading companies in global cybercrime prevention and hi-tech crime investigations has found a new kind of malware that targets the Russian stock-trading platform QUIK. It was detected during several targeted attacks starting in November 20...

As Defenders Adapt, Offensive Techniques Continue to Evolve

MIAMI BEACH–The security teams that have to defend enterprise networks are faced with a broad and deep threat landscape populated with all manner of malware and targeted attacks. Those teams often have to react quickly to new threats, well before vendors respond with new technologies. By the look...

Stealthy BaneChant Trojan Lurks in Word File, Relies on Multiple Mouse Clicks

Much like malware that was discovered last year, a new Trojan has been reported that relies on detecting mouse clicks to evade sandbox analysis. BaneChant masquerades as a Word document and incorporates advanced evasion techniques making it stealthier than its predecessor. Researchers at FireEye...

Wade Williamson on Malware Trends

Dennis Fisher talks with Wade Williamson of Palo Alto Networks about the use of compromised FTP accounts in targeted attacks and malware campaigns, and how attackers are adapting their techniques. Download: digitalunderground115 Podcast audio courtesy of sykboy65 Subscribe to the Digital...

Why Watering Hole Attacks Work

Information security is littered with bad analogies. And none sounds sillier than a watering hole attack, which plays off the tactic that dominant animals use when stalking food by loitering at a watering hole. Rather than chase their prey, a lion will wait for prey to come to it. Hackers are doi...

Anti-Tibetan Attack Stems from Nvidia Abuse, Old RTF Vulnerability

A series of targeted attacks are continuing to bully a signed Nvidia application into dropping a backdoor that lets attackers root their way through the systems of Tibetan sympathizers. According to Sophos’ Gabor Szappanos, the multifaceted attack can install a backdoor on unsuspecting users’...

Adobe Patches Two Critical Flash Player Vulnerabilities

Adobe released yet another security update for its Flash Player product, it’s third this month, earlier today. The emergency update patches three vulnerabilities, including two critical CVE-2013-0643 and CVE-2013-0648 that are targeting Flash Player in Mozilla’s Firefox browser and could let an...

Two new Java zero-day vulnerabilities reported to Oracle

A Polish security firm 'Security Explorations' reported two new Java zero-day vulnerabilities, as "issue 54" and "issue 55," with proof of concept code to Oracle. Oracle's security team is currently investigating the issue, but the status flaws not yet confirmed by Oracle. Less than a week after...

Two new Java zero-day vulnerabilities reported to Oracle

A Polish security firm 'Security Explorations' reported two new Java zero-day vulnerabilities, as “issue 54” and “issue 55,” with proof of concept code to Oracle. Oracle's security team is currently investigating the issue, but the status flaws not yet confirmed by Oracle. Less than a week after...

What does the Poetry with Citadel trojan ?

Recently we published an article on the attacks against Japanese banks using a new variant of the popular Zeus, one of the most prolific malware of recent history, security experts in fact have detected various versions of the popular malicious code that hit also mobile and social networking...

Adobe Investigating Reports of Reader Zero-Day Exploit

UPDATE-Attackers are using malicious PDFs posing as an application for an international travel visa to exploit a zero-day vulnerability in Adobe Reader and Acrobat, a researcher at FireEye told Threatpost today. The exploit is the first to escape the sandbox included in Reader X and above. Zheng...

More on Cybersecurity

For more information on targeted attacks, cyberwarfare and cyberespionage: Experts Say CEOs Need to Get Handle on Cyberespionage Problem Red October Attackers Shutting Down C&C Infrastructure Howard Schmidt Answered the Bell A Podcast with Howard Schmidt An Interview with Eugene Kaspersky...

Eddie Schwartz of RSA

Eddie Schwartz, CISO of RSA, emphasized the need for enterprises to use the data they have on their networks to help defend against targeted attacks...

Andy Steingruebl and Adrian Stone

Andy Steingruebl, left, senior manager, customer and ecosystem security at PayPal, and Adrian Stone, director of security response at BlackBerry, discussed the difficulty of dealing with targeted attacks in the enterprise. “Incident response is the key,” Stone said...

Avoid the Landmine That is Hacking Back

Rarely a day goes by without mention of a targeted attack against some government-related website, massive disruptions in online banking services, or critical vulnerabilities in specialized software running our power plants and water supplies. And all the while, IT and security organizations have...

Inside the 1,000 Red October Cyberespionage Malware Modules

The Red October espionage malware campaign is providing security researchers with a deep dive into the complexity of targeted attacks, which in this case made use of more than 1,000 malware modules for everything from reconnaissance on targets to exfiltration of data to command and control server...

2012: What Have We Learned

There’s a natural inclination for people at the end of each year to look back, take stock and try to draw some grand meaning or life lessons out of the events of the past 12 months. This is a particularly risky and difficult thing to do in the security industry, given its inherent unpredictabilit...

Microsoft Releases Security Advisory for Internet Explorer

Microsoft has released Security Advisory 2794220 to address a vulnerability in Microsoft Internet Explorer 6, 7, and 8. This vulnerability may allow an attacker to execute arbitrary code if a user accesses a specially crafted website. Microsoft is aware of targeted attacks that attempt to exploit...

Malware called 'Eurograbber' steals 36 million Euros

A new version of the Zeus botnet was used to steal about $47 million from European banking customers in the past year. This Zeus variant Trojan is blamed for attacks that stole more than 36 million Euros $47 million U.S. dollars from an estimated 30,000 consumer and corporate accounts at European...

Malware called 'Eurograbber' steals 36 million Euros

A new version of the Zeus botnet was used to steal about $47 million from European banking customers in the past year. This Zeus variant Trojan is blamed for attacks that stole more than 36 million Euros $47 million U.S. dollars from an estimated 30,000 consumer and corporate accounts at European...