Cyber Crime

Pierluigi Paganini December 21, 2016
Victims of the CryptXXX v.3 can now use a free tool to decrypt their files

Security researchers have released a decryption tool for unlocking files encrypted by the notorious CryptXXX v.3 ransomware. CryptXXX v.3 ransomware was defeated, researchers have released a decryption tool for unlocking encrypted files. The decryption tool was included in the RannohDecryptor utility, a free application shared by the No Ransom Project. The utility was already able to unlock […]

Pierluigi Paganini December 20, 2016
A new Ukraine power outage may have been caused by hackers

A cyber attack against the Government Ukraine energy company Ukrenergo may be the root cause of power outage that occurred in Ukraine late on Saturday. A new cyber attack may be the root cause of power outage that occurred in Ukraine late on Saturday. According to the Ukraine energy company Ukrenergo, the power outage occurred at the midnight between […]

Pierluigi Paganini December 20, 2016
Faketoken, the Android ransomware banker that encrypted files

The banker Android ransomware Faketoken that steals financial information and sensitive data now also implements file-encrypting abilities. Security experts from Kaspersky Lab have spotted a strain of known Android malware that now implements also ransomware-like abilities. According to the researchers, Vxers are adding file-encrypting capabilities to traditional mobile banking trojans, the result is a malware that […]

Pierluigi Paganini December 18, 2016
Russian hacker Rasputin allegedly stole logins from the US election agency EAC

The Russian-speaking hacker Rasputin was attempting to sell the allegedly stolen login credentials from the US Election Assistance Commission (EAC). According to the security firm Record Future, a Russian-speaking hacker was offering for sale stolen login credentials for a U.S. agency that tests and certifies voting equipment, the U.S. Election Assistance Commission (EAC). The EAC Agency […]

Pierluigi Paganini December 18, 2016
DNSChanger Exploit kit targets Home routers in malvertising campaign

Security experts observed malvertising campaign leveraging the DNSChanger malware to compromise multiple models of home routers. The Christmas season can be the busiest time of the year for online shopping in many countries. Researchers at Proofpoint have recently announced the discovery of a new and improved version of the DNSChanger Exploit Kit. “Since the end […]

Pierluigi Paganini December 17, 2016
Odinaff Trojan behind financial attacks mostly in Turkey

Akbank, one of the largest Turkish banks seems to be the latest victim of the Odinaff trojan, a threat similar to the Carbanak malware. Odinaff; a malware similar to Carbanak, has been targeting financial institutions around the world since the beginning of the year. “Since January 2016, discreet campaigns involving malware called Trojan.Odinaff have targeted a number […]

Pierluigi Paganini December 17, 2016
Yahoo data is for sale on Dark Web, and someone has already bought them

According to Andrew Komarov, Chief Intelligence Officer (CIO) at security firm InfoArmor, the Yahoo database was sold for $300,000 on the dark web. Recently Yahoo admitted one billion accounts exposed in a newly discovered data breach occurred in 2013. Hackers broke into the systems of Yahoo and accessed one billion user accounts containing names, addresses, phone […]

Pierluigi Paganini December 16, 2016
PROMETHIUM and NEODYMIUM APTs used same Zero-Day to Target Turkish citizens

Microsoft discovered two distinct APT groups, PROMETHIUM and NEODYMIUM, that exploited the same Flash Player zero-day flaw on same targets. Security researchers have discovered two distinct APT groups, PROMETHIUM and NEODYMIUM, that exploited the same Flash Player zero-day vulnerability (CVE-2016-4117) in cyber espionage campaigns on Turkish citizens living in Turkey and various other European countries. Both […]

Pierluigi Paganini December 15, 2016
BlackEnergy hackers, now TeleBots, target Ukrainian banks

The BlackEnergy hacker group that targeted the Ukrainian grid one year ago, now identified as TeleBots, are targeting Ukrainian banks. The BlackEnergy hacker group that targeted the Ukrainian grid one year ago causing a power outage in the country are now targeting Ukrainian banks. The Ukrainian government accused Russia of being involved in the attack, […]

Pierluigi Paganini December 15, 2016
Phishing campaign on Office 365 Business users leverages Punycode

Security researchers discovered a new phishing campaign leveraging Punycode and a bug in Office 365 defense systems to deceive victims. Office 365 business email users continue to be the target of phishing campaigns, a new wave of attacks was leveraging Punycode to avoid detection of Microsoft’s default security and desktop email filters. Punycode is a method added […]