Delaware, USA – April 19, 2018 – Experts from CSE ZLab published a report on existing Ransomware-as-a-Service platforms. Almost all of them are hiding in Darknet and allow anyone to carry out and monitor their ransomware campaigns. Platforms differ in both the features provided and the price for services. For example, the Createyourownransomware platform allows […]
Delaware, USA – April 18, 2018 – At the end of last week, the first PoC exploit for the critical vulnerability CVE-2018-7600 in Drupal CMS was posted on GitHub. Patch for this vulnerability dubbed Drupalgeddon2 was released on March 28. More than 1 million websites use Drupal to manage content, the vulnerability allows adversaries to […]
Delaware, USA – April 16, 2018 – Experts from Proofpoint, Abuse.ch and BrilliantIT intercepted control over the C&C infrastructure of one of the largest botnets that distribute malware. Botnet EITest appeared in 2011, and by now it has grown to more than 52 thousand hacked sites with installed backdoors. Attackers used the botnet to redirect […]
Delaware, USA – April 13, 2018 – Attackers from the Iranian grouping APT33 leverage a new technique to inject malicious code into legitimate processes. Researchers from Cyberbit dubbed this technique ‘Early Bird’. Previously, none of the attackers leveraged this technique, and the malware used allowed to link the latest attacks with the APT33 group. Most […]
Delaware, USA – April 12, 2018 – Researchers from Menlo Security discovered a campaign directed against the information services and financial sectors in the US and the Middle East. Attackers spread FormBook infostealer via malicious Microsoft Word documents. Researchers believe that adversaries behind the campaign are very experienced since their malware delivery method allows to […]
Delaware, USA – April 11, 2018 – Yesterday, at “April Patch Tuesday”, Microsoft released 65 security updates, including an update package for Adobe Flash Player. This month, 19 critical vulnerabilities have been closed, including the flaw in Microsoft Malware Protection Engine. Only one vulnerability was disclosed before the release of the patch, this vulnerability in […]
Delaware, USA – April 10, 2018 – Researchers from MalwareHunterTeam discovered two new Matrix ransomware samples in the wild. As well as SamSam ransomware that recently attacked the city of Atlanta, this malware is installed by attackers manually after RPD connection hacking. The Matrix ransomware not only encrypts data but also deletes shadow copies and […]
Delaware, USA – April 6, 2018 – Security researchers from ESET published a report on the investigation of the attack targeted an online casino in Central America. They linked this cyberattack with high confidence to the North Korean hacker group Hidden Cobra, also known as Lazarus group. The group has been conducting successful operations around […]
Delaware, USA – April 5, 2018 – Another emergency update was released to fix a critical vulnerability in Microsoft Malware Protection Engine. MMPE is a part of several security solutions, including Windows Defender, which is used by default in Windows 10. The vulnerability allows attackers to execute malicious code on the victim’s system. To compromise […]
Delaware, USA – April 4, 2018 – Three months have passed since the public became aware of Meltdown and Spectre vulnerabilities, and so far they have not been completely patched. On Monday, Intel updated Microcode Revision Guidance and indicated the processor families for which there will be no microcode updates to protect against the Specter […]