Malware

Pierluigi Paganini January 12, 2016
Experts warn Neutrino and RIG exploit kit activity spike

Security experts at Heimdal Security are warning a spike in cyber attacks leveraging the popular Neutrino and RIG exploit kit. Cyber criminals always exploit new opportunities and users’ bad habits, now crooks behind the recent campaigns relying on Neutrino and RIG exploit kits are ramping up attacks against users that haven’s patched their Adobe Flash software. “It […]

Pierluigi Paganini January 11, 2016
Watchout Smart TV Malware is Here

Security experts at Kaspersky Lab investigated a threat to discover it was specifically designed to compromise Smart Tv devices or it was an accidental infection. A Reddit user with username being “moeburn” raised the likelihood of new malware flowing for Smart TVs, this week: My sister got a virus on her TV. A VIRUS ON […]

Pierluigi Paganini January 11, 2016
The BlackEnergy malware was a key element of the Ukraine power outage

According to security experts the BlackEnergy malware was a key element of the attack against Ukrainian power grid that caused the power outage.  On December 23, the entire Ivano-Frankivsk region in Ukraine suffered a major power outage, according to security experts and the Ukrainian Government the attackers used a destructive varian of the popular BlackEnergy […]

Pierluigi Paganini January 08, 2016
iSight Partners says the Sandworm APT is involved Ukrainian power outage

The Russian Sandworm APT group if the first suspect for the Ukrainian power outage, states experts at eiSight Partners. According to a report published by experts at eiSight Partners the cyber attack against a Ukraine power station has been managed by a Russian group called Sandworm. A few days ago experts at ESET reported the existence of a […]

Pierluigi Paganini January 08, 2016
Rovnix malware is threatening Japanese bank customers

The Rovnix Banking Trojan is an aggressive malware that has been used in a new campaign targeting the customers of more than a dozen Japanese banks. Malware experts at IBM’s X-Force have spotted a new strain of the Rovnix malware targeting the Japanese bank customers. The new threat comes from Russia and it is very […]

Pierluigi Paganini January 07, 2016
Authors digitally signed Spymel Trojan to evade detection

Zscaler ThreatLabZ detected a new infostealer malware family dubbed Spymel that uses stolen certificates to evade detection. In late December, security experts at Zscaler ThreatLabZ detected a new infostealer malware family dubbed Spymel that uses stolen certificates to evade detection. “ThreatLabZ came across yet another malware family where the authors are using compromised digital certificates to evade detection. The malware family in […]

Pierluigi Paganini January 07, 2016
Resume files locked by Linux Encoder with Bitdefender decryption tool

Bitdefender has discovered for the third time a flaw in Linux Encryption Ransomware Linux Encoder that exposes the decryption Key used to lock the files. In November  2015, the Russian antivirus firm Doctor Web reported the discovery of a new Linux ransomware dubbed Linux Encoder that was specifically designed to infect Linux systems. The Linux.Encoder1 ransomware encrypts files present […]

Pierluigi Paganini January 04, 2016
BlackEnergy targets Ukrainian news media and electric industry

Security experts at ESET firm provided details of the new campaign based on the BlackEnergy Trojan that targeted Ukrainian news media and electric industry in 2015. A new wave of malware-based attacks is targeting media outlets and energy companies in Ukraines, the attackers rely on malicious code that is able to wipe hard drives of […]

Pierluigi Paganini January 03, 2016
Analyzing Ransom32, the first JavaScript ransomware variant

Ransom32 is a new crypto-ransomware variant recently reported, it is the first ransomware variant that has been developed in the JavaScript. Ransom32 is a new crypto-ransomware variant that was first reported on December 29th, 2015, by an infected user on the Bleeping Computer forums. It is the first ransomware variant that has been developed in the […]

Pierluigi Paganini December 27, 2015
The Ramnit Botnet is back after the law enforcement takedown

The Ramnit botnet that has been disrupted by European law enforcement in February is back and it’s targeting online banking worldwide. Security researchers at IBM Security have discovered a new variant of the popular Ramnit Trojan. This year law enforcement agencies from several European countries coordinated by the Europol have taken over the botnet composed […]