Items tagged with Malware

Over 1,000 North Korean citizens try to defect to South Korea each and every year, and for each of them, the sudden sense of freedom must feel overwhelming. Naturally, North Korea isn't happy with anyone who decides to leave, and the country certainly has the means to seek out and track those who've done so. While the country may not send out investigators to follow everyone who defects, the North Korean government has other creative ways to keep tabs on its former citizens, including creating its own sophisticated malware. More specifically, this mobile device malware will read your personal... Read more...
If you use Facebook Messenger, hate malware, and always click on links you're sent without a second thought, then you're going to want to exercise more caution moving forward. A new strain of malware has been making the rounds since March, and depending on how you view things, the effect of "Nigelthorn" is somewhat smashing! This latest malware is named after the Nigel Thornberry character in the popular The Wild Thornberrys cartoon, and while it might seem like an odd choice, it was done because the malware works by exploiting the 'Nigelify' browser extension that changes pictures into an image... Read more...
If your Android phone has suddenly started bombarding you with advertisements, you might the victim of malware, and specifically a strain that recently infiltrated Google Play by disguising itself as a bunch of handy utilities. Researchers at security firm Sophos discovered the tricky malware, saying that infected apps amassed over half a million downloads before Google removed them. Six of the booby-trapped apps claimed to be QR code readers, while another billed itself as a smart compass. All of them actually worked as advertised. To further mask the scent of foul play, the hidden adware in each... Read more...
Google's Android operating is often seen as having a bad reputation with regards to security. We often hear about malware coursing its way through the Google Play Store that can hijack your smartphone, but Google is here to tell us that Android is secure -- or rather, it is at least as secure as Apple’s iOS. With over 2 billion devices actively running Android, securing the wide variety and types of devices can be a challenge. But Google says that "Android security made a significant leap forward in 2017 and many of our protections now lead the industry." Google lays out its long-running... Read more...
It seems that everyone and their uncle is mining cryptocurrency these days. That is a topic in and of itself, but what's disturbing is even if you are not knowingly mining virtual coins, you might still be mining...for someone else. Crypto-jacking has emerged as a form of malware, whereby a website or app sneakily injects a 'miner' onto your device so that a remote attacker can tap into your phone or PC's resources for profit. Microsoft's security team did some digging into the situation and found some interesting trends related to this growing threat. To be clear, Microsoft is not against the... Read more...
Security researchers at Kaspersky Lab have discovered a rather nasty malware strain that has been hiding in certain wireless routers for over half a decade. Called Slingshot, the security researchers who discovered the malicious code believe the malware is part of a sophisticated cyberespionage campaign. The malware is present in certain routers manufactured by MicroTik, though Kaspersky says it might also be affecting models by other brands as well. Part of what makes Slingshot particularly dangerous is that it uses a trick to run in kernel mode. This is almost impossible do to in updated operating... Read more...
Everyone seems to be trying to strike it rich with cryptocurrency, so it's no surprise that "drive-by cryptomining" has become a thing. If you're not aware, drive-by cryptomining is when a site injects a device with JavaScript code for the purposes of mining cryptocurrency, usually Monero (Coinhive launched a service that is widely utilized for this purpose) and without the user's knowledge or consent. It's a growing problem that is already affecting millions of mobile devices., mostly Android. Image Source: Flickr via Rob Bulmahn "In a campaign we first observed in late January, but which appears... Read more...
It's been roughly a month since the first reports concerning Spectre and Meltdown began appearing on the web. Since that time, hardware and software companies have been working together to release BIOS/microcode updates, software patches, and operating system kernel updates to protect customers. Even though the industry has been pushing out fixes at a rapid rate, malicious actors looking to take advantage of the exploits have also been working overtime. According to AV-TEST, an independent organization that specializes in software that detects malware, has found 139 specific instances of malware... Read more...
ATMs can be a blessing and a curse to financial institutions. On the one hand, they can process financial transactions quickly, allowing the machines to serve more people over a span of time than a human teller. However, ATMs are often the target of hackers, many using skimmers to obtain debit card numbers for later nefarious spending sprees. Now, the Secret Service is warning that an existing type of ATM attack, jackpotting, is finally beginning to make its way to the United States. Jackpotting has been prevalent at banking institutions across Europe and Asia, but not so much in the U.S. It involves... Read more...
It appears that Google's DoubleClick ad network has become the latest target of relentless miners looking to make an extra buck with the Monero cryptocurrency. The revelation comes after TrendMicro observed that the number of active Coinhive miner detections tripled around January 24th. After doing some detective work, it was observed that the increase in traffic was coming from a total of five "malicious domains". Given the immense popularity of the DoubleClick network, it should come as no surprise that enterprising hackers would attempt to exploit it to reach a staggering number of users. In... Read more...
Well this is disturbing—researchers at the Electronic Frontier Foundation (EFF) and mobile security company Lookout have discovered a cyber-espionage campaign that has been operational since 2012 and is aimed at Android users. The campaign, dubbed Dark Caracal, has infected thousands of Android devices in more than 20 countries, resulting in the theft of hundreds of gigabytes of data. The malware that is being doled out as part of Dark Caracal is mostly focused on spoofing secure chat messaging clients on mobile devices. Among them are fake versions of Signal and WhatsApp, which appear to... Read more...
Security researchers have uncovered malware hidden in four different extensions for Google's Chrome browser. Collectively, the four extensions have been downloaded and installed more than half a million times, including onto workstations within major organizations globally. While likely used to commit click fraud and search engine optimization (SEO), the number of installs could provide cyber criminals with a potent botnet. "While revenues are not known, a similar botnet uncovered in 2013 yielded $6 million per month before it was taken down," security researchers at Icebrg, a computer security... Read more...
Android malware that has the ability to spy on users and perform other nefarious tasks seem to be a dime a dozen these days. However, a new piece of Android malware is making the rounds, and it's loaded to the brim with sophisticated spying capabilities that have never been seen before. Dubbed Skygofree, the malware was first developed back in 2014 and has gone through a number of code rewrites since then. In its most current iteration, the number of features that are at its disposal are quite remarkable. Kaspersky labels Skygofree as "multi-stage spyware that gives attackers full remote control... Read more...
With the booming value of cryptocurrency, many hackers and nefarious actors are rolling out schemes to unwittingly trick regular web users into mining for them. The latest scheme to dupe people into mining cryptocurrency is taking advantage of Facebook Messenger via some slick malware.  The malware being distributed via Messenger is mining Monero, an alternative to the wildly valuable and volatile Bitcoin. Security researchers from Trend Micro are calling the malware Digmine and are saying that it could also help perpetrators to take over a Facebook account. The Digmine malware is disguised... Read more...
1 2 3 4 5 Next ... Last