Items tagged with Malware

Everyone seems to be trying to strike it rich with cryptocurrency, so it's no surprise that "drive-by cryptomining" has become a thing. If you're not aware, drive-by cryptomining is when a site injects a device with JavaScript code for the purposes of mining cryptocurrency, usually Monero (Coinhive launched a service that is widely utilized for this purpose) and without the user's knowledge or consent. It's a growing problem that is already affecting millions of mobile devices., mostly Android. Image Source: Flickr via Rob Bulmahn "In a campaign we first observed in late January, but which appears... Read more...
It's been roughly a month since the first reports concerning Spectre and Meltdown began appearing on the web. Since that time, hardware and software companies have been working together to release BIOS/microcode updates, software patches, and operating system kernel updates to protect customers. Even though the industry has been pushing out fixes at a rapid rate, malicious actors looking to take advantage of the exploits have also been working overtime. According to AV-TEST, an independent organization that specializes in software that detects malware, has found 139 specific instances of malware... Read more...
ATMs can be a blessing and a curse to financial institutions. On the one hand, they can process financial transactions quickly, allowing the machines to serve more people over a span of time than a human teller. However, ATMs are often the target of hackers, many using skimmers to obtain debit card numbers for later nefarious spending sprees. Now, the Secret Service is warning that an existing type of ATM attack, jackpotting, is finally beginning to make its way to the United States. Jackpotting has been prevalent at banking institutions across Europe and Asia, but not so much in the U.S. It involves... Read more...
It appears that Google's DoubleClick ad network has become the latest target of relentless miners looking to make an extra buck with the Monero cryptocurrency. The revelation comes after TrendMicro observed that the number of active Coinhive miner detections tripled around January 24th. After doing some detective work, it was observed that the increase in traffic was coming from a total of five "malicious domains". Given the immense popularity of the DoubleClick network, it should come as no surprise that enterprising hackers would attempt to exploit it to reach a staggering number of users. In... Read more...
Well this is disturbing—researchers at the Electronic Frontier Foundation (EFF) and mobile security company Lookout have discovered a cyber-espionage campaign that has been operational since 2012 and is aimed at Android users. The campaign, dubbed Dark Caracal, has infected thousands of Android devices in more than 20 countries, resulting in the theft of hundreds of gigabytes of data. The malware that is being doled out as part of Dark Caracal is mostly focused on spoofing secure chat messaging clients on mobile devices. Among them are fake versions of Signal and WhatsApp, which appear to... Read more...
Security researchers have uncovered malware hidden in four different extensions for Google's Chrome browser. Collectively, the four extensions have been downloaded and installed more than half a million times, including onto workstations within major organizations globally. While likely used to commit click fraud and search engine optimization (SEO), the number of installs could provide cyber criminals with a potent botnet. "While revenues are not known, a similar botnet uncovered in 2013 yielded $6 million per month before it was taken down," security researchers at Icebrg, a computer security... Read more...
Android malware that has the ability to spy on users and perform other nefarious tasks seem to be a dime a dozen these days. However, a new piece of Android malware is making the rounds, and it's loaded to the brim with sophisticated spying capabilities that have never been seen before. Dubbed Skygofree, the malware was first developed back in 2014 and has gone through a number of code rewrites since then. In its most current iteration, the number of features that are at its disposal are quite remarkable. Kaspersky labels Skygofree as "multi-stage spyware that gives attackers full remote control... Read more...
With the booming value of cryptocurrency, many hackers and nefarious actors are rolling out schemes to unwittingly trick regular web users into mining for them. The latest scheme to dupe people into mining cryptocurrency is taking advantage of Facebook Messenger via some slick malware.  The malware being distributed via Messenger is mining Monero, an alternative to the wildly valuable and volatile Bitcoin. Security researchers from Trend Micro are calling the malware Digmine and are saying that it could also help perpetrators to take over a Facebook account. The Digmine malware is disguised... Read more...
We know all too well about the dangers of cryptocurrency mining malware that can invade our PCs. We've also seen unscrupulous websites that run mining software in the background, sapping valuable resources. Now, it seems as though we need to be on the lookout for mining malware that can invade our smartphones. Kaspersky Lab warns that the malware, Tojan.AndroidOS.Loapi or "Loapi", is targeting the Android platform. The security firm warns that Loapi can be distributed via advertisement campaigns (which can cause redirects to malicious websites that download infected packages to your device). But... Read more...
In geekier circles, Mr. Robot is one of the most popular television shows on the planet. It's well-written, well-acted, and most importantly, it's captivating. That said, the show isn't necessarily universally well-known and perhaps its most recent publicity effort just went a little too far. It was with great surprise in fact, that many Firefox users have found a mysterious "Looking Glass" extension installed in their browser, without their consent. To end the current season of Mr. Robot off with a little surprise, Mozilla teamed up with the team behind the show to create a little mini-game that... Read more...
Microsoft announced this week that it has teamed up with the FBI and other partners including ESET to dismantle the massive botnet called Gamarue (Andromeda). Microsoft says that it and its partners began the journey to disrupt the botnet all the way back in 2015. A coordinated take down started on November 29, 2017 and an arrest was made. ESET wrote, "A coordinated take down started on November 29, 2017 and as a result of this joint effort, law enforcement agencies across the globe were able to make an arrest and obstruct activity of the malware family responsible for infecting more than... Read more...
A fake WhatsApp application was downloaded more than 1 million times from Google's Play Store before it was finally removed, and that should serve as a wake-up call that Google needs to do a better job vetting its submissions. In this case, the malicious app slipped through the cracks by spoofing the legitimate version, both in appearance (it initially used the same icon) and the developer field. The malicious version was spotted by Nikolaos Chrysaidos, a security researcher at Avast, one of the better known antivirus companies (particularly in the realm of free AV). According to Chrysaidos, the... Read more...
There is strength in numbers, and that is part of what is driving an increase in cryptocurrency mining malware. The idea is to infect as many mobile devices as possible, and tap into the combined computing power to crunch numbers for profit. Unfortunately, this seems to be a trend (on both mobile and PC)—security outfit Trend Micro says it found apps with malicious cryptocurrency mining capabilities on Google Play. This is not the first time these kinds of apps have appeared in Google Play, and it probably will not be the last. What they have in common is that they use dynamic JavaScript loading... Read more...
This has been a bad year for wide-scale ransomware attacks, where malware encrypt a user's computer and demands payment to unlock the machine. The two major ransomware attacks that have happened in 2017 include WannaCry and ExPetr (or Petya and NotPetya as they were also called). The hackers behind WannaCry cashed out their bitcoin ransom in August netting about $143,000. The year is almost over, but another major ransomware attack is underway and it is called Bad Rabbit. Kaspersky says that Bad Rabbit has infected several major Russian media outlets with Interfax and Fontanka.ru news agencies... Read more...
1 2 3 4 5 Next ... Last