Report accuses China of extensive mobile spyware use to track ethnic minority group
A new blog post and research report from the Lookout Threat Intelligence Team has exposed the lengths to which a...
malware
A Deep Dive Into Samsung’s TrustZone (Part 3)
Part 1: Detailed overview of Samsung's TrustZone components Part 2: Tools development for reverse-engineering and vulnerability research Part 3: Vulnerability...
‘GoldenSpy’ tax software campaign tries to erase evidence of malware
The actors behind a campaign to spread GoldenSpy malware via tax accounting software used by customers of a Chinese bank...
Cybercriminals likely poised to attack as Adobe ends support for Magento 1
After publishing a final security update for Magento 1 last week, Adobe is ending support for its popular 12-year-old ecommerce...
Geopolitical targets figuring in latest StrongPity attacks
StrongPity, aka Promethium, a potentially state-sponsored APT group active since 2012, isn’t letting exposed campaigns in recent years stop it...
Tax software used by Chinese bank clients installs GoldenSpy backdoor
A tax software program installed by business clients of an unidentified Chinese bank was trojanized with malware that installs a...
UCSF paid $1.4 million ransom in NetWalker attack
The University of California, San Francisco (UCSF) ponied up a $1.4 million to hackers to retrieve data encrypted during a...
Glupteba malware leverages blockchain as a communications channel
Glupteba malware does something novel: It uses the bitcoin blockchain as a communications channel to receive updated configuration information. That’s...
Triton v0.8 and ARMv7: A Guideline for Adding New Architectures
As you may have read in our previous blog post, the release of Triton v0.8 came with a lot of...
Malicious doc campaign unleashes Cobalt Strike on gov’t, military orgs in South Asia
A military-themed malware campaign targeting military and government organizations in South Asia unleashes “maldocs” that spread full remote-access trojan (RAT)...
Variant of Mac malware ‘Shlayer’ spreads via poisoned web searches
Researchers have discovered a new variant of Shlayer Mac malware that bypasses Apple’s built-in security protections and is being spread...
Malicious Google extensions research points out ‘unintended consequence’ of cloud computing
Researchers at Awake Security have made news over the past 24 hours exposing a scheme in which some 79 malicious...
Sapphire Software’s Nicholas Takacs asks: Is self-aware malware possible yet?
“Two can play at this game…” Cybersecurity is a non-stop arms race between white hats and malicious hackers, and the...
Cyber snoops targeted aerospace, defense employees with fake job offers on LinkedIn
A cyber espionage operation used fake job offers, sent via LinkedIn messages, to target employees at aerospace and military companies...
Targeting U.S. banks, Qbot trojan evolves with new evasion techniques
By malware standards, the banking trojan Qbot is long in the tooth, but it still has some bite, according to...
Cryptomining campaign targets Kubernetes via machine learning framework
A malware campaign is abusing the popular machine-learning (ML) framework Kubeflow in order to target Kubernetes clusters with a crypto...
VBA macro, remote template injectors included in Gamaredon post-compromise tool kit
The Gamaredon threat group has built a post-compromise tool arsenal that includes remote template injectors for Word and Excel documents...
Black Lives Matter phishing scam looks to spread TrickBot malware
Scammers often craft social engineering schemes around major crises and news events, as demonstrated by the wealth of coronavirus-themed phishing...
Playing Around With The Fuchsia Operating System
Introduction Fuchsia is a new operating system developed by Google, targeting the AArch64 and x86_64 architectures. While little is known...
Malware found in popular barcode apps produces ads that instantly vanish
A pair of Android barcode reader apps that were downloaded more than 1 million times were found to contain ad...
‘Enterprise-grade’ BazarBackdoor malware delivered via spear phishing emails
Researchers have uncovered a new “enterprise-grade” backdoor malware program that they say shares code with the notorious modular banking trojan...
Multilingual malware attacks on industrial sector suppliers designed to thwart detection
International equipment and software suppliers for the industrial sector last May suffered targeted malware attacks that employed numerous unconventional techniques to evade detection,...
Malware in GitHub-hosted projects designed to spread among open-source developers
Twenty-six open-source projects hosted on GitHub repositories were found to be infected with malware and capable of serving up weaponized...
Shiny Hunters’ latest hit: Minted among 73.1M records offered
More details have emerged about hacker group “Shiny Hunters’” prey this past month of more than 11 website victims, including...
