25 matches found
Threat Roundup for March 24 to March 31
Today, Talos is publishing a glimpse into the most prevalent threats weve observed between March 24 and March 31. As with previous roundups, this post isnt meant to be an in-depth analysis. Instead, this post will summarize the threats weve observed by highlighting key behavioral characteristics,...
Threat Round up for December 9 to December 16
Today, Talos is publishing a glimpse into the most prevalent threats weve observed between Dec. 9 and Dec. 16. As with previous roundups, this post isnt meant to be an in-depth analysis. Instead, this post will summarize the threats weve observed by highlighting key behavioral characteristics,...
Threat Roundup for August 5 to August 12
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Aug. 5 and Aug. 12. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...
Threat Roundup for July 22 - 29
Talos is publishing a glimpse into the most prevalent threats we've observed from July 22 - 29. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics, indicators of...
Threat Roundup for January 24 to January 31
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 24 and Jan. 31. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics...
Threat Roundup for August 23 to August 30
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Aug. 23 and Aug. 30. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics...
CrySis Ransomware Master Decryption Keys Released
The threat posed by a ransomware family known as CrySis was diminished considerably on Sunday when the master decryption keys were released to the public. Researchers at Kaspersky Lab said they have already folded the keys into the company’s Rakhni decryptor and victims of CrySis versions 2 and 3...
Decryption Utilities Unlock Files Encrypted by All TeslaCrypt Versions
For close to a month, the master encryption key unlocking files ravaged by TeslaCrypt has been publicly available, putting an end to a profitable strain of ransomware. In the weeks since, various decryptors have been developed that can be used to unlock files. Kaspersky Lab, for one, updated its...
New Angler Exploits Bypass EMET Mitigations
New Microsoft Silverlight and Adobe Flash exploits that bypass Microsoft’s Enhanced Mitigation Experience Toolkit EMET have found their way into an updated version of the Angler Exploit Kit. EMET is a suite of freely available tools for Windows machines that mitigate memory-based attacks. The...
On the LinkedIn Breach, TeslaCrypt Closing Up Shop, and More
Mike Mimoso and Chris Brook discuss the news of the week, including the LinkedIn breach, TeslaCrypt closing up shop, and a breakthrough in random number generation. The two also recap this week’s Source conference in Boston. Download: ThreatpostNewsWrapMay202016.mp3 Music by Chris Gonsalves...
How to Decrypt TeslaCrypt Ransomware Files Using Master Key
Here’s some rare good news for victims struggling to unlock files encrypted by the TeslaCrypt ransomware. You can now decrypt all files locked by TeslaCrypt without paying a ransom. That means victims no longer need to search endlessly for ways to recover TeslaCrypt-encrypted data. The solution h...
Master Decryption Key Released for TeslaCrypt Ransomware
The criminals behind the TeslaCrypt ransomware have closed up shop and publicly released the master decryption key that unlocks files encrypted by the malware. The news is significant given the investment and constant innovation devoted to TeslaCrypt, which has been one of the most active...
On Ransomware Hitting an Online Casino, Brazil Taking WhatsApp Offline, And More
Mike Mimoso, Chris Brook, and Threatpost’s newest reporter, Tom Spring, discuss the week in news, including a first hand account of an online casino’s experience with a Teslacrypt infection, Brazil shutting down WhatsApp, and attackers mining an ADP portal for W-2s. Download:...
On the Apple/FBI Hearing, Viber Adding End-to-End Encryption, TeslaCrypt and More
Mike Mimoso and Chris Brook discuss the news of the week, including BlackBerry CEO’s stance on lawful access principles, the FBI/Apple hearing, Viber adding end-to-end encryption, Teslacrypt, and more. Download: ThreatpostNewsWrapApril222016.mp3 Music by Chris Gonsalves...
Latest TeslaCrypt Targets New File Extensions, Invests Heavily in Evasion
TeslaCrypt, like many of its ransomware cousins, doesn’t sleep on past success. Researchers at Endgame Inc., have found two updates for the cryptoransomware in the past two weeks that invest heavily in obfuscation and evasion techniques, and also target a host of new file extensions. These sample...
Malvertising Campaign Lands On Top Websites
Big-name websites were hit with a cunning malvertising campaign over the weekend that attempted to sneak TeslaCrypt ransomware on computers vulnerable to the potent Angler Exploit Kit. Top sites running the malicious ads included The New York Times owned NYTimes.com, Answers.com and AOL.com,...
Angler Exploit Learns New Tricks, Finds Home On Popular Website
Researchers report Angler Exploit Kit attacks have become more brazen and are now targeting top websites with new tricks that can evade browser-based antimalware protection. Karl Sigler, a SpiderLabs researcher at Trustwave, told Threatpost his lab found the Angler Exploit Kit on a popular websit...
CVE-2 0 1 6-0 0 3 4 vulnerability information and exploit tools-vulnerability warning-the black bar safety net
! /Article/UploadPic/2016-2/2 0 1 6 2 2 4 1 4 4 8 1 1 3 9. png CVE-2 0 1 6-0 0 3 4(MS16-0 0 6 a exists in the in Silverlight memory corruption vulnerability in Kaspersky company security researchers discovered this vulnerability after Microsoft in 2 0 1 6 years 1 month posted a corresponding...
Joomla Joins WordPress As TeslaCrypt Ransomware Target
Exploit kits infecting thousands of WordPress websites are setting their sights on the open-source content management system Joomla in a new campaign spotted by a researcher at the SANS Institute’s Internet Storm Center. “The group behind the WordPress ‘admedia’ campaign is now apparently targeti...
WordPress Compromises Lead to Teslacrypt Ransoware
Website operators running sites on the WordPress platform need to be aware of a massive string of infections that as of Thursday were poorly detected by security products. Researchers at Heimdal Security said the compromised sites redirect victims to other domains hosting the Nuclear Exploit Kit,...