Following similar move in US, Europol prepares coup de gras for Emotet’s remains
On Sunday, Europol will end a three-month-long process of dismantling the Emotet botnet by triggering a time-activated .dll to delete...
malware
Vendors are getting better at spotting malicious execution techniques
Mitre Engenuity – The Mitre Corporation’s tech foundation for public good – released the results of its independent evaluation of...
Malware operators leverage TLS in 46% of detected communications
Urs Holzle, Senior Vice President for Technical Infrastructure at Google, speaks on the Google Cloud Platform during a Google I/O...
Video game cheat mod malware demonstrates risks of unlicensed software
Activision reported finding postings on hacking forums on YouTube by a threat actor promoting a Remote Access Trojan that can...
CopperStealer malware infected up to 5,000 hosts per day over first three months of 2021
Researchers disrupted a newly documented Chinese-based malware called CopperStealer that, since significant countermeasures started in late January, infected up to...
Apple developers targeted by malicious Xcode project
A man stands in front of Apple store in Berlin, Germany. Threat actors have abused the Run Script feature in...
SolarWinds spurs investment in threat hunting, supplier vetting
Organizations that boosted security budgets in response to the SolarWinds hack invested the most in threat hunting. (“SolarWinds letters” by sfoskett is licensed...
‘Educational’ ransomware program may instead become a how-to guide for attackers
A developer published via GitHub a proof-of-concept (POC) ransomware program featuring strong compatibility with the post-exploitation tool Cobalt Strike, open-source...
Microsoft links new malware to SolarWinds hackers
Microsoft released details on later-stage malware the company says was used by the group behind the SolarWinds espionage campaign. (Microsoft)Microsoft...
Second malware strain primed to attack Apple’s new M1 chip identified
Along with the Pirrit Mac adware identified earlier this week, researchers from Red Canary identified Thursday a different malware strain...
Microsoft: web shell attacks have doubled over the past year
Microsoft’s Detection and Response and 365 Defender teams are sounding the alarm that the number of observed attacks using web...
Cryptojacking malware targeting cloud apps gets new upgrades, worming capability
A piece of cryptojacking malware with a penchant for targeting the cloud has gotten some updates that makes it easier...
Bot ‘FreakOut’ leverages three critical vulnerabilities to attack Linux systems
Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. Researchers discovered a new Internet...
Fourth SolarWinds malware strain shows diversity of tactics
Researchers have found a fourth strain of malware – Raindrop – that was used in the SolarWinds supply chain attack,...
Sunspot malware scoured servers for SolarWinds builds that it could weaponize
A malware program used in the SolarWinds supply-chain attack seeks out developers’ builds of the SolarWinds Orion IT management platform...
Linux machines again targeted by hackers with new memory loader
Linux-based machines are no longer considered a major deterrent for cybercriminal groups, who are embracing the operating system as a...
Malspam campaign spoofs email chains to install IcedID info-stealer
In a new phishing campaign, the offending emails arrive in inboxes with attached, password-protected zip archives containing Word documents. (Photo...
Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux
Researchers have found a new remote access trojan (RAT) written from scratch in Golang that lures cryptocurrency users to download...
New Golang worm turns Windows and Linux servers into monero miners
Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. A newly discovered worm turns...
3 million users hit with infected Google Chrome and Microsoft Edge extensions
The Google logo adorns the outside of the Google building in New York City. Google Chrome extensions are being used...
Kaspersky researchers found 360,000 malicious files per day in 2020
Researchers at Kaspersky discovered an average of 360,000 new malicious files every day over the past 12 months – 18,000...
Trickbot trojan takes aim at vulnerabilities in booting process
Trickbot, the notorious botnet and banking Trojan, has a new trick up its sleeve. According to new research by Eclypsium...
Bandook malware targets ‘unusually wide variety’ of industries, regions
Security researchers are warning that the once-dormant Bandook malware family is back, possibly be part of a broader operation selling...
Websites requiring security software downloads opened door to supply chain attack
The Seoul skyline in South Korea (Flickr – Laurie Nevayhttps://www.flickr.com/photos/laurienevay/, CC BY-SA 2.0 https://creativecommons.org/licenses/by-sa/2.0, via Wikimedia Commons).A newly reported supply...
