13 matches found
Cybercriminals Adding Sophistication to BEC Threats
Cybercriminals are boosting their game and employing new tactics to move up the chain of command with more sophisticated business email compromise BEC threats that pose a greater threat to organizations, according to a new report. Advanced BEC attacks–including impersonation attacks and CEO...
Source Code for CARBANAK Banking Malware Found On VirusTotal
Security researchers have discovered the full source code of theCarbanak malware—yes, this time it's for real. Carbanak—sometimes referred as FIN7, Anunak or Cobalt—is one of the most full-featured, dangerous malware that belongs to an APT-style cybercriminal group involved in several attacks...
FireEye: Russian Research Lab Aided the Development of TRITON Industrial Malware
Cybersecurity firm FireEye claims to have discovered evidence that proves the involvement of a Russian-owned research institute in the development of the TRITON malware that caused some industrial systems to unexpectedly shut down last year, including a petrochemical plant in Saudi Arabia. TRITON...
Iran-Linked Group ‘TEMP.Zagros’ Updates Tactics, Techniques In Latest Campaign
Researchers say a massive phishing campaign targeting Asia and Middle East regions is linked to an Iranian-based threat actor TEMP.Zagros, also known as MuddyWater. This latest attack illustrates an evolution by the threat actor, which has now adopted new tactics, techniques and procedures. “We...
Hackers Exploiting Three Microsoft Office Flaws to Spread Zyklon Malware
Security researchers have spotted a new malware campaign in the wild that spreads an advanced botnet malware by leveraging at least three recently disclosed vulnerabilities in Microsoft Office. Dubbed Zyklon, the fully-featured malware has resurfaced after almost two years and primarily found...
Iranian APT33 Targets U.S. Firms with Destructive Malware
The Iranian group known as APT33 is believed to be behind a cyberespionage campaign targeting aerospace, petrochemical and energy sector firms located in the United States, Saudi Arabia and South Korea. The group’s latest attack leverages a dropper called DropShot that is tied to the StoneDrill...
CVE-2 0 1 5-2 5 4 6: from patch than to Exploit-vulnerability warning-the black bar safety net
This month's Microsoft Security Bulletin MS15-0 9 7 repair Microsoft Graphics component in the plurality of kernel vulnerabilities. Wherein the Win32k memory corruption privilege escalation Vulnerability: CVE-2 0 1 5-2 5 4 6 out of https://technet.microsoft.com/zh-CN/library/security/ms15-097.asp...
Fake EFF Site Used in Spear Phishing Campaign
Attackers, possibly associated with the Russian government, registered a phony Electronic Frontier Foundation domain earlier this month in an attempt to dupe users into thinking correspondence from the site was coming from the well-known privacy watchdog. The scheme, largely carried out via spear...
Apple Patches iOS Ins0mnia Vulnerability
Apple’s monster security update of Aug. 13 included a patch for an iOS vulnerability that could beacon out location data and other personal information from a device, even if a particular task has been shut off by the user. A mobile app exploiting this vulnerability could also look benign enough ...
The IOS system is exposed to significant vulnerabilities hackers can be loaded with a fake APP theft information-vulnerability warning-the black bar safety net
! IOS system exposed a major security vulnerability hackers can remotely load the fake APP to steal information page screenshot) International online feature articles: according to the US CNBC website 8 on 6 reported that, according to Internet security company FireEye report, the 8.13 version of...
Mobile Android, iOS Apps Still Vulnerable to FREAK Attacks
In the shadow of a major OpenSSL vulnerability scheduled to be announced tomorrow, lingering issues remain with mobile platforms and applications that still run versions of the crypto library vulnerable to FREAK attacks. A report published Tuesday by FireEye paints a bleak picture of vulnerable...
On the use of Adobe 0day – CVE-2 0 1 4-0 5 0 2 attack behavior analysis-vulnerability warning-the black bar safety net
The other day FireEye released a use AdobeFlash new 0day attack report, and Adobe has been based on vulnerabilities released a security update. According to FireEye report, many sites will redirect visitors to the following contain a Trojan the malicious Server: Peterson Institute for...
Malware More Globally Distributed, Still Made in China
In an attempt to better evade detection, cybercriminals are increasingly configuring their command and control infrastructure in such a way that initial malware callbacks communicate with a server located in the same country as the newly infected machines. This emerging trend is among the vast an...