Phishing emails lure victims with news of coronavirus’ impact on shipping
Looking to capitalize on the current coronavirus scare, malware distributors have launched a new phishing campaign that targets global companies...
malware
Metamofo banking malware spreads around the world
A new variant of the Metamorfo banking malware is on the loose targeting a wider range of financial institutions than...
Cybercriminals abuse Bitbucket to infect users with potpourri of malware
A newly discovered attack campaign has been abusing the online storage platform Bitbucket to maintain and update a wide assortment...
TA505 phishing campaign uses HTML redirectors to spread info stealer
The cybercriminal group TA505 has reportedly changed up its tactics again, now engaging in phishing campaigns that leverage attachments with...
Hackers play on Coronavirus fears to spread Emotet
Cybercriminals are exploiting fears over the outbreak of Coronavirus in China, sending out emails with malicious Word attachments purportedly providing...
Tampa Bay Times hit by Ryuk, new variant of stealer aimed at gov’t, finance
On the heels of a Ryuk ransomware attack on the Tampa Bay Times, researchers reported a new variant of the...
Three Magecart operatives arrested in Indonesia
Several members of a group allegedly behind hundreds of Magecart-style attacks were arrested last month in Indonesia as the result...
Malware redirecting visitors found on 2,000 WordPress sites
More than 2,000 WordPress sites have been infected with malicious JavaScript that redirects visitors to scam websites and sets the...
Reverse Engineering a Philips TriMedia CPU based IP Camera – Part 3
Introduction Welcome to the final chapter of the Trimedia series. In the first part of the series, I introduced this...
A Deep Dive Into Samsung’s TrustZone (Part 2)
Introduction After detailing Samsung's TrustZone implementation in the first part of this series, this blog post introduces the tools that...
A Deep Dive Into Samsung’s TrustZone (Part 1)
Motivations After a general introduction on the ARM TrustZone and a focus on Qualcomm's implementation, this new series of articles...
A Glimpse Into Tencent’s Legu Packer
Introduction This blog post deals with the Legu packer, an Android protector developed by Tencent that is currently one of...
Irma Past and Future
Introduction Irma is our file security analysis software, originally developed as an open source project with the sponsorship of 5...
Renewed Emotet phishing activity targets UN, government and military users
Since resuming operations after a holiday hiatus, the malicious actors behind the Emotet banking trojan network have reportedly targeted at...
Bahraini oil company reportedly attacked by new ‘Dustman’ disk wiper
Bapco, the national oil company of the Persian Gulf island nation of Bahrain, was reportedly targeted in a Dec. 29...
Attackers distill essence of Mirai IoT botnet into LiquorBot malware
Researchers recently uncovered another descendant of the Mirai Internet of Things botnet, this one featuring Monero cryptocurrency mining capabilities. Dubbed...
Google app vulnerability being exploited in the wild: Trend Micro
The Sidewinder APT group has been actively abusing a Binder vulnerability in at least three apps found in the Google...
New Magecart skimmers practice steganography, data transfer via WebSocket
A researcher has discovered a pair of new Magecart-style web skimmers, each one featuring an evasion technique that’s not typically...
Travelex sidelines online financial services following malware discovery
Foreign exchange financials company Travelex has suspended its UK-based digital services offline since New Year’s Eve, following the discovery of...
Attackers sink their meathooks into Landry’s restaurants’ payment card data
The Houston-based steakhouse, restaurant and hospitality company Landry’s, Inc. has advised customers of a point-of-sale malware attack that stole payment...
Three GozNym members sentenced domestically, internationally
A three-year-old investigation and prosecution of cybercriminals aligned with the multinational GozNym network resulted last week in the sentencing of...
Rising sea and spam levels? Emotet campaign uses Greta Thunberg as lure
An Emotet banking trojan phishing campaign was spotted using the name of activist Greta Thunberg as a lure to target...
Multiple-malware dropper ‘Legion Loader’ dissected
The insidious nature of difficult-to-detect, multiple strains of malware working in tandem to unleash complete obliteration is on full display...
It’s a trap! Cybercriminals use Star Wars: Rise of Skywalker as bait
Star Wars: The Rise of Skywalker is just being released into theaters today but cybercriminals were already assembling fake websites...
