Malware

Pierluigi Paganini January 05, 2015
Microsoft observed a significant increase in macros based malware

The Microsoft Malware Protection Center (MMPC) has recently observed a surge in the infections of malware using macros to spread their malicious code. The Microsoft Malware Protection Center (MMPC) is warning Office users on the diffusion of malicious macros through email attachments or social engineering websites. A macro is a series of commands and instructions that […]

Pierluigi Paganini December 27, 2014
TorrentLocker ransomware campaign hit Spain and Italy

Experts at S21sec firm recently detected a new ransomware campaign based on TorrentLocker that infected users prevalently in Italy and Spain. The last report published by Trend Micro revealed that ransomware represents a serious cyber threat in the EMEA region, where countries like Italy and Spain observed over 80% of the affected users. Recently S21sec detected […]

Pierluigi Paganini December 25, 2014
Cybercrime-as-a-Service, a winning model of sale

Security Experts at Sophos explained the efficiency of the business model known as Cybercrime-as-a-Service in the specific case of Vawtrak botnet. The term Cybercrime-as-a-Service refers to the practice in the cybercriminal ecosystem to provide product and services for use by other criminals. In September 2014, a report from Europol’s European Cybercrime Centre (EC3), the 2014 […]

Pierluigi Paganini December 24, 2014
Virlock, the first self-reproducing polymorphic Ransomware

Sophos and ESET detected the first self-reproducing polymorphic Ransomware dubbed Virlock that encrypts files and creates unique instances of itself. Security researchers from Sophos and ESET security firms have discovered a new interesting trend in the evolution of ransomware. The new strain of ransomware, dubbed VirRansom or VirLock, discovered by the experts is able to encrypt […]

Pierluigi Paganini December 23, 2014
Eastern APT group Anunak steals millions from banks

Security researchers discovered a criminal crew called Anunak that has already stolen $17 million from banks, retailers and others firms since 2013. Security companies Group-IB and Fox-IT have conducted a joint investigation on a cyber espionage group called called Anunak, which has been targeting banks and payment systems in Russia and Commonwealth of Independent States countries, […]

Pierluigi Paganini December 22, 2014
Cyber attack on German steel factory caused severe damage

The annual IT security report issued by the German BSI reported that a sophisticated cyber attack on a steel factory caused severe damage. A cyber attack could cause serious damage to a production plant or a facility, we discussed several times this attack scenario that represents a nightmare for security experts and Intelligence agencies. The […]

Pierluigi Paganini December 22, 2014
Chthonic, a new strain of ZeuS trojan hits 150 banks worldwide

A new strain of Zeus Trojan dubbed Chthonic has been discovered in the wild targeting more than 150 banks and 20 payment systems mainly in Europe. Experts believe they have seen everything about the Zeus trojan, P2P versions, versions that infect SaaS, agents that exploit the Tor network or that recruit money mules … then […]

Pierluigi Paganini December 21, 2014
ISIS operates spear phishing attacks against a Syrian citizen media group

A Syrian citizen media group critical of ISIS was recently targeted in a spear phishing campaign which aim to de-anonymize its members. The Islamic State in Iraq and Syria (ISIS) is accused to have run cyber attacks against the Syrian citizen media group known as Raqqah is being Slaughtered Silently (RSS), the news was reported by […]

Pierluigi Paganini December 20, 2014
USBdriveby, how to compromise a PC with a $20 microcontroller

USBdriveby is a device designed to quickly and covertly install a backdoor and override DNS settings on an unlocked machine via USB. The security experts Samy Kamkar (@SamyKamkar) has proposed a very interesting way to compromise an unlocked computer and deploy a backdoor on it simply by using a pre-programmed Teensy microcontroller. The cheap ($20) […]

Pierluigi Paganini December 16, 2014
TSPY_BANKER Banking Trojan Targets banks in South Korea

Security experts at Trend Micro detected a new banking trojan dubbed TSPY_BANKER.YYSI which uses Pinterest as command and control system. According to researchers at Trend Micro once again, banks in South Korea are targeted by a new financial malware designed to target their customers. The attackers have targeted customers of the principal financial institutions of […]