Malware

Pierluigi Paganini November 23, 2015
Damballa revealed the secrets behind the Destover malware that infected the Sony Pictures

Security researchers at Damballa Willis McDonald and Loucif Kharouni have conducted a deep analysis of the Destover malware used in the Sony Pictures attack. Security researchers at Damballa Willis McDonald and Loucif Kharouni have conducted a deep analysis of the wiper used by threat actors in the Sony Pictures hack. The experts discovered that attackers used a highly sophisticated disk-cleaning […]

Pierluigi Paganini November 22, 2015
Police Body Cameras come with Conficker Worm

Police body cameras sold by Martel Electronics have been found to be infected with the notorious Conficker worm. Security experts at iPower Technologies while analyzing the body cam designed for police departments manufactured by Martel Electronics, discovered that the cameras were infected. Martel Electronics is US company that design video systems used by law enforcement, including […]

Pierluigi Paganini November 22, 2015
Shedun adware can install any malicious mobile app by exploiting Android Accessibility Service

Shedun Trojanized adware family implements the ability to automatically install any app on the devices by exploiting the Android Accessibility Service. Android is once again in the storm, threat actors can install any malicious third-party app on mobile devices remotely even if the users explicitly refuse it. Security experts at mobile security firm Lookout have […]

Pierluigi Paganini November 20, 2015
Hackers behind Dark Seoul are back

The hacking group that behind the Dark Seoul Operation that hit entities in South Korea in 2013 may be back with new targets. According to the experts at Palo Alto Networks, the hacking group behind the attacks that targeted banks, financial institutions, government websites and news agencies in South Korea is still active. The attacks […]

Pierluigi Paganini November 19, 2015
New Dyre variant in the wild supports Windows 10 and Microsoft Edge

The developers of the Dyre banking Trojan have released a new version of the malware that includes support for Windows 10 and Microsoft Edge. The security firms Heimdal Security and F5 Networks have uncovered a new version of the Dyre (Dyreza) banking Trojan that includes support for Windows 10 and Microsoft Edge. The new variant of Dyre now also […]

Pierluigi Paganini November 19, 2015
Blackhole Exploit Kit Resurfaces in the wild

The experts at Malwarebytes have noticed that threat actors in the wild are reusing the Blackhole Exploit Kit despite its limited effectiveness. The Blackhole exploit kit has reappeared in the wild surprising the security industry after that in October 2013 its author, know as Paunch, was arrested. Paunch was the author of two of the most popular exploit […]

Pierluigi Paganini November 16, 2015
Twittor tool uses Twitter direct messages to control botnets

Twittor is a tool open source that was designed by the London-based researchers Paul Amar to control botnets via Direct Messages. Twittor is a tool open source that was designed by the London-based researchers Paul Amar to control botnets via Direct Messages. The expert has developed the Twittor tool to make life easier for botnet masters, allowing them to control their […]

Pierluigi Paganini November 14, 2015
You can buy a Cryptolocker/Cryptowall Ransomware Kit for $3,000

Experts at BitDefender have discovered a Cryptolocker/Cryptowall Ransomware Kit offered for sale at $3,000, source code included. Yesterday I wrote about a new Ransomware-as-a-service, the FAKBEN, surfaced from the criminal underground, requesting customers 10 percent profit cut. In the previous days I reported other cases involving ransomware, such as a malicious code that infected the UK […]

Pierluigi Paganini November 13, 2015
FAKBEN Ransomware-as-a-service emerges from the underground

FAKBEN is offering a professional Ransomware-as-a-service that relies on a new CryptoLocker ransomware which can be downloaded through the executable file. Ransomware is probably the most popular category of malicious code in this period, this week we have discussed a malicious code that infected the UK Parliament, an off-line ransomware and a Linux.Encoder1 ransomware revealing the decryption key. News of the […]

Pierluigi Paganini November 13, 2015
Cherry Picker, a PoS Malware even more threatening

Researchers at Trustwave have published the analysis of the Cherry Picker threat, a point-of-sale (PoS) malware that went undetected over the years. A point-of-sale (PoS) malware that went largely undetected for the past several years has been analyzed by researchers at Trustwave. Security experts at Trustwave have analyzed an insidious point-of-sale (PoS) malware dubbed Cherry Picker that threat has […]