News

Hackers Spread Zyklon Malware via Phishing Emails

Delaware, USA – January 18, 2018 – Researchers from FireEye discovered spear phishing campaign that distributes Zyklon backdoor. The campaign targets telecommunications industry, as well as financial and insurance companies. Emails contain a zip archive with malicious MS Word document that exploits one of three known vulnerabilities in MS Office to deliver malware to the […]

Attackers Infect Linux and Windows Servers with RubyMiner

Delaware, USA – January 18, 2018 – An unknown hacker group compromises servers with outdated software to infect them with RubyMiner malware. To find such web servers, they use the p0f utility: they are interested in both Linux and Windows servers vulnerable to exploits discovered in 2012 and 2013. Researchers from Checkpoint claim that at […]

Skygofree: powerful tool for cyber espionage

Delaware, USA – January 17, 2018 – Researchers from Kaspersky Lab published a report on the discovered trojan for Android created three years ago and evolved during this time into one of the most effective tools for cyber espionage. The latest version of Skygofree was detected in October 2017. The most impressive of its functions […]

MaMi – new DNS Hijacker for MacOS

Delaware, USA – January 17, 2018 – Last week, a researcher from Objective-see studied and described the newly discovered malware for MacOS, which was not detected by antivirus solutions. OSX / MaMi modifies DNS settings on the infected assets and installs own root certificate to intercept encrypted traffic. Adversaries can use this tool to perform […]

A new version of KillDisk discovered in Latin America

Delaware, USA – January 16, 2018 – Researchers from Trend Micro have discovered a new version of KillDisk, which attacks financial institutions in Latin America. KillDisk is a disk-wiping tool in the arsenal of the infamous SandWorm hacker group. It was used in BlackEnergy campaign and over time, attackers modified this wiper to disguise it […]

Fake Meltdown & Spectre patches are used to infect systems with Smoke Loader malware

Delaware, USA – January 16, 2018 – In the first weeks of 2018, public attention was drawn to the uncovered Meltdown and Spectre vulnerabilities: hardware and software vendors continue to release patches or security updates and send out notifications about these vulnerabilities and ways to deal with them. Attackers also took advantage of the popularity […]

Edvinas Pranculis Joins SOC Prime

Delaware, USA – January 5, 2018 – Edvinas Pranculis is a business management professional with more than 14 years of experience in information technology and cybersecurity field. His invaluable knowledge has already helped many companies to enter new markets in 30+ countries around the world and has enabled them to achieve strong business growth. Edvinas […]

Meltdown and Spectre attacks exploit vulnerabilities in CPU to steal data

Delaware, USA – January 4, 2018 – Several teams of security researchers independently found critical vulnerabilities in processors that allow malware to steal data from memory and other running programs. Vulnerability CVE-2017-5754 is called Meltdown, it affects almost all Intel processors. With its help, attackers can read the kernel memory and steal any data found, […]

A new wave of attacks using Loki Infostealer

Delaware, USA – December 26, 2017 – Several campaigns spreading Loki Infostealer were detected in December. Campaigns differ in both distribution methods and malware modifications. Trojan Loki is a modular malware, anyone can buy it on Darknet forums and its functionality varies depending on the modification. In addition, hackers do not hesitate to crack this […]

Massive Brute Force Campaign Targets WordPress Sites

Delaware, USA – December 21, 2017 – This Monday, Wordfence company reported on the start of massive brute force campaign against WordPress websites. There are more than 10,000 IPs from different countries involved in this attack. Employees of security firm recorded splashes exceeding 14 million attempts of password guessing per hour that targeted approximately 200,000 […]