Delaware, USA – July 3, 2018 – At the end of June, researchers reported the campaign targeted MacOS users. Adversaries used the new malware dubbed OSX.Dummy, which can bypass the Gatekeeper and allows adversaries to remotely execute commands on the infected system. Despite rising number of MacOS malware, only a few of them pose a […]
Delaware, USA – June 20, 2018 – The hacker group behind the attack during the Winter Olympics Opening Ceremony in Pyeongchang is preparing a new operation. In February, cybercriminals used the Olimpic Destroyer wiper in attempt to disrupt the ceremony, and they succeeded partially: for 12 hours the Olimpic website was unavailable, and they caused […]
Delaware, USA – June 19, 2018 – Attackers updated the infamous Satan ransomware and added additional possibilities for lateral movement within the organization’s network after initial infection. They named new modification the DBGer Ransomware, and now it is actively used in malicious campaigns. The Satan ransomware appeared a year and a half ago as a […]
Delaware, USA – June 18, 2018 – SOC Prime, Inc. is pleased to announce Michael Goedeker joins our team as Senior Vice President of Cyber Risk Intelligence. Michael is well-known cybersecurity expert and researcher on the frontline of cyber warfare, espionage and crime. He has worked for leading cyber security vendors including the IBM, Guardium, […]
Delaware, USA – June 14, 2018 – Josh Grunzweig from Palo Alto Networks shared his research on the trends of cryptocurrency mining malware. He managed to collect statistics on more than 629 thousand malware samples and analyze it. The most popular cryptocurrency among adversaries is Monero, almost 85% of malware analyzed mine this cryptocurrency. Monero […]
Delaware, USA – June 13, 2018 – Yesterday, Microsoft issued monthly security update pack (June 2018 Patch Tuesday) to fix 50 vulnerabilities, twelve vulnerabilities are marked as critical, and there is a publicly accessible proof of concept for one of them. Several vulnerabilities affect Edge and Internet Explorer browsers, including the vulnerability CVE-2018-8267, which can […]
Delaware, USA – June 12, 2018 – Experts from ESET discovered sophisticated spyware used in a long-term cyber-espionage campaign. Attackers used InvisiMole since 2013 and Malware remained undetected all this time due to highly targeted attacks. Methods of infection are still unknown, at the moment the researchers continue their investigation. InvisiMole is a modular malware […]
Delaware, USA – June 11, 2018 – Adversaries attacked the Chilean bank with a modified version of KillDisk to cover up the traces of their criminal activity. The financial organizations in Latin America became targets of such attacks at the beginning of this year. In May we wrote about the banking trojan N40 targeted banks […]
Delaware, USA – June 8, 2018 – An unknown APT group is conducting a cyber-espionage campaign that targeted organizations in Doha, Qatar. The campaign was uncovered by experts from 360 Core Security, its detailed analysis showed that the adversaries prepared for the operation for several months. Adversaries send phishing emails with a carefully crafted Microsoft […]
Delaware, USA – June 7, 2018 – Researchers from Cisco Talos сontinue to analyze and share details about VPNFilter malware. A more in-depth analysis allowed them to determine the number of other devices that can be infected with the malware. The list has increased more than four times to 71 devices and, probably, this is […]