Pierluigi Paganini February 05, 2016
Someone has pwned the Dridex botnet serving the Avira Antivirus

Unknowns have pwned the Dridex botnet and are using it to spread a legitimate copy of the Avira Antivirus software instead the malicious payload. This story is very intriguing, someone has hacked a portion of the dreaded Dridex botnet and replaced malicious links with references to installers for the Avira Antivirus. The Antivirus company denies […]

Pierluigi Paganini February 25, 2015
A $ 3million reward on kingpin behind the GameOver Zeus botnet

The US Justice Department offers $3 million reward for the arrest of GameOver ZeuS kingpin. The botnet was involved in financial frauds on a large-scale. The Justice Department has announced a reward of up to $3 million for the capture of the GameOver ZeuS botnet master. The malicious botnet was used by “a tightly knit gang […]

Pierluigi Paganini February 04, 2015
Experts uncovered a massive CTB-Locker ransowmare campaign

Security researchers at the CERT team at SociĂ©tĂ© GĂ©nĂ©rale uncovered a new malware campaign which is spreading the CTB-Locker or Critroni crypto ransomware. Security experts at the CERT team at SociĂ©tĂ© GĂ©nĂ©rale discovered a new malware campaign delivering the CTB-Locker or Critroni crypto ransomware. In the past, the criminals used the popular Angler exploit kit in order […]

Pierluigi Paganini January 10, 2015
Cryptowall Ransomware is resurrected with new features

Researchers at Cisco’s Talos group published an analysis of a new variant of Cryptowall ransomware that implements new features. CryptoWall ransomware is one of the most popular malware used in the cybercriminal ecosystem for extortions. Ransomware is a specific family of malicious code that lock victims’ resources and demands a ransom to unlock them. CryptoWall is considered […]

Pierluigi Paganini July 19, 2014
Critroni, a sophisticated ransomware which uses Tor Network as C&C

A security researcher has detailed Critroni ransomware, a new sophisticated malware which is being sold in different underground forums. In 2013 ransomware were among the menaces that monopolized the threat landscape, malware such as Cryptolocker infected hundreds of thousand machines worldwide. Critroni (aka CTB-Locker) is the name of the last ransomware which captured the attention of security experts, the malware […]

Pierluigi Paganini June 05, 2014
TROJ_POSHCODER A ransomware uses Windows PowerShell features

Malware analysts at Trendmicro have discovered a new Ransomware malware using feature of Windows PowerShell which targeted English language users. Ransomware is one of the cyber threats that has created major problems last year, with increasing frequency cyber criminals gangs have opted for an extortion scheme to immediately monetize their efforts. Security expert have observed a surge […]

Pierluigi Paganini June 05, 2014
Simplocker, the first Android File-Encrypting Ransomware

Security experts at ESET discovered and analyzed the first Android File-Encrypting ransomware dubbed Simplocker with C&C hosted on TOR. Ransomware is  not a prerogative of desktop computers, cyber criminals are targeting also mobile platforms, recently it has been discovered the first mobile trojan able to encrypt victim’s data on Android by ESET security firm. Cyber criminals […]

Pierluigi Paganini June 03, 2014
Gameover Zeus Botnet disrupted by multinational effort

The DoJ and the FBI announced a multinational effort to disrupt the GameOver Zeus botnet responsible for the theft of millions of dollars worldwide. The U.S. DoJ in collaboration with FBI and foreign law enforcement agencies revealed early this week a joint effort to disrupt Gameover Zeus, one of the most long-lived and dangerous botnet composed by a number […]

Pierluigi Paganini May 31, 2014
Symantec alerts on surge in Phishing for Apple ID

Symantec has released a security advisory on the increment of phishing activities for Apple ID login credentials. The Symantec security firm has published an interesting blog post to warn Apple Mobile users on the increment of phishing campaigns to steal Apple ID credentials. Cybercriminals are adopting new techniques to trick users into disclose their personal information […]

Pierluigi Paganini May 28, 2014
Extortion scheme based on ransom request hit Australian Apple Users

Cybercriminals have targeted a large number of Apple’s iCloud users with a sophisticated extortion scheme based on ransom request in Australia. The 2013 is considered the year of ransomware, the number of infections related to this kind of threat has reached levels never seen before. Cryptolocker is without doubts the most popular malware of this type, […]