Blog

cryptostealing hijacking vidar malware bitcoin cryptocurrency

Crypto-stealing malware Vidar spreads via cloned cryptocurrency trading website

A malware researcher and a twitter user Fumik0_ has discovered a new website that is spreading crypto malware. This fake cryptocurrency trading website is masquerading as a legitimate service that delivers crypto-stealing malware trojan known as Vidar. This malware trojan is distributed through a site that impersonates CryptoHopper trading platform which allows users to build models...
Continue Reading
phishing email scam

Phishing Email Scam asks you to login to read encrypted message

Summary  New phishing campaign is in circulation requiring users to login to a fraudulent OneDrive site in order to unveil an encrypted message.    Analysis  A believed to be phishing emails with subject similar to ‘Encrypted Message Received’ and includes a link stating ‘View Encrypted Email’.  Message link will divert the user to a fake OneDrive for...
Continue Reading
wordpress website joomla malcious scripts malware hacking hacker

New Malicious Script poses threat to WordPress and Joomla-based websites

Cyber-security researchers are warning owners of Joomla and WordPress websites of a malicious redirect script that is pushing visitors to malicious websites and expose them to various malwares. A renowned cyber-security researcher published a report outlining a rogue hypertext access (.htaccess) injector found on a client website. He reported that the impacted site was directing website...
Continue Reading
black router iranian malware ransomware trojan blackrouter

Iranian Malware BlackRouter – evolved as a Ransomware

BlackRouter, a ransomware recognized in 2018 is currently being endorsed as a Raas by its maker. The individual behind BlackRouter, known as “MOH3NE2”, is accepted to be of Iranian origins. This ransomware was identified by a cybersecurity scientist Petrovic and is found to have enhanced highlights, for example, a clock and an alternate GUI over the...
Continue Reading
google android malware trojans security backdoor

Google Android confirms smartphone security backdoor

Summary Triada Trojan has been found in the firmware of various low-cost Android devices, which could be used to steal sensitive data and run cyber espionage modules.   Analysis First seen in March 2016 and labelled as the most advance mobile Trojan during that time specifically engineered as Android banking trojan. Android system images were infected...
Continue Reading
hiddenwasp malware linux digital risk protection risk compliance

HiddenWasp malware seizes control of Linux systems

Summary  New found malware dubbed as HiddenWasp believed to be targeting linux ecosystem, developers of this malware deployed it to remotely control infected Linux systems. The malware is also established from key parts of code used in Mirai and Azazel rootkit. Surprisingly, HiddenWasp has a zero-detection rate in all anti malware program under Linux.    Analysis  This malware main goal is to take control of compromised Linux...
Continue Reading
apple gatekeeper bug mac os mojave malware trojan

Gatekeeper bug in MacOS Mojave allows malware to execute

Summary  Researcher recently uncover bug in the macOS security feature Gatekeeper that allows malicious code execution on systems running the most recent version of Mojave (10.14.0) release. Included in macOS since 2012, the Gatekeeper security protection attempts to prevent malware from running on a Mac by enforcing code signing and verifying downloaded applications before execution.    Analysis  The flaw...
Continue Reading
goznym gang group banking malware phishing fraud

Europol arrests end GozNym banking malware gang

Malware crackdown 10 out of 11 defendants in five countries are accused of using the malware to steal money from more than 41,000 victims, mostly businesses and financial institutions. Five defendants were arrested in Moldova, Bulgaria, Ukraine and Russia. The leader of the criminal network and his technical assistant are being prosecuted in Georgia.The remaining five...
Continue Reading
fdlp defacement iran us wars cyber attack cyber crime iranian hackers hacker

Attack by Iranian hackers on US Government Domain raises concerns about cyber defense

  Aptly timed.   Two words that sum up this attack by Iranian hackers on US cyberspace, what with rising tensions between the United States and Iran. A couple of days ago, the website for the Federal Depository Library Program (FDLP) was defaced by hackers based in Iran, shortly after the killing of Qassem Suleimani in...
Continue Reading
vietnam government cyber attack cyber threat foreign companies

Government-related hackers posing cyber threat to foreign companies in Vietnam

Nowadays, cybercrime is one of the most popular crimes circulating around the world. That’s why many companies are giving their efforts to save their companies by providing cybercrime solutions and protective measures against possible cyber threat attack. And the government is not exempted to this attack. These hackers are attacking multinational companies for several years now....
Continue Reading
alternate phishing method us banks

Hackers devise alternate Phishing Method aimed at US Banks

Cybercriminals in the phishing business have adopted a new phishing method to obfuscate the source code for the forged page by using a custom web font to implement a substitution cipher that looks like plain text. When browsers render the phishing page, what users see is the fake landing page created to steal login credentials, as...
Continue Reading
oracle weblogic server malware certificate

Oracle WebLogic Server susceptible to malware hiding in Certificate Files

Security researchers discovered a security vulnerability in Oracle WebLogic Server, a component of Oracle Fusion Middleware, and found to be actively exploited by cybercriminals to install cryptocurrency miners. This malware which was used in the attack hid in certificate files to avoid malware detection and later dropped miners for cryptocurrency known as Monero Miner. Tracked as...
Continue Reading
firefox mozilla ryptojacking spear phishing phishing remote code execution

Firefox exploits involves Remote Code Execution and CryptoJacking

The Mozilla Corporation has just patched a couple of zero-day weak points on its flagship browser – Firefox through two separate security updates. While the first zero-day flaw was described as a “remote code execution” vulnerability that enabled remote attackers to run a malicious code within the native process of the Firefox browser, the second one...
Continue Reading
uk energy firm vishing voice phishing ai

Cybercriminals use voice phishing to scam $243000 out of a UK Energy Firm

Phishing has already been popular for its vast attacks from individuals to big companies around the world thus many cyber-security firms have already investigated and found cyber-crime solutions to combat these attacks. But what’s shocking in today’s news is that cyber-criminals developed a sophisticated form of phishing called voice phishing or vishing, to steal money from...
Continue Reading
earl enterprises data breach joker stash darkweb malware compromised data

Earl Enterprises – Iconic US hospitality firm hit with heavy Data Breach

In a released statement posted to its website, Earl Enterprises – the parent company of Planet Hollywood and Buca Di Beppo said a data breach involving malware installed on its point-of-sale systems allowed cyber thieves to steal card details from customers between May 23, 2018 and March 18, 2019. According to an analysis of that page,...
Continue Reading
phishing attack employee direct deposit paycheck hackers hacking

Hackers can’t wait – They are accessing employees’ Direct Deposit Paycheck

If your paycheck hits your bank account through direct deposit, be on the lookout for emails requesting personal information including log-in credentials — they could be a phishing scam by hackers who want to access your bank account.   The Federal Bureau of Investigation (FBI) has released a warning in regards to hackers targeting direct deposit...
Continue Reading
DesJardins bank data breach compromised data

Canada’s DesJardins Bank suffers massive Data Breach

The largest federal banking firm in North Americas – Canada’s Desjardins Group, was the victim of a recent data breach that exposed information on 2.9 million customers. Customers’ sensitive credentials weren’t compromised, but the leak did reveal sensitive data like names, addresses, birth dates, social insurance numbers (Canada’s equivalent of the social security number), email addresses...
Continue Reading
catholic school cewa cyberattack malware phishing

Catholic school in Australia falls victim to Cyber Attack

The principal of a Catholic school in West Australia’s Mid-West has cautioned parents that their bank info and their signatures may have been compromised after their school was targeted in a recent cyber-attack. Rob Crothers, the principal, expressed his deep regrets for the data breach, which he said was highly sophisticated and well planned out. He...
Continue Reading
nasa hacked data breach compromised data

A NASA Laboratory just got infiltrated using a cheap US $20 PC

Just to have an overview of what exactly a cheap PC might be like – Raspberry Pi is a teeny-tiny device that can be tinkered with to gain deceptively high capabilities. This was demonstrated by a most recent report which confirmed that a NASA lab was hacked using a Raspberry Pi.   The alleged data infiltration...
Continue Reading
xsocialmedia advertising agency compromised data 3rd party risk assessment

Online media advertising agency exposes patients’ medical info

A renowned online advertising agency which specializes in helping law firms sign up potential clients has exposed close to 150,000 records from a database that were left unsecured.   The historical databank contained submissions as part of a lead-generation effort by X Social Media, a Florida-based advertising company that largely uses Facebook to advertise various campaigns...
Continue Reading
1 2 3 4 5 6 23