Malware & Threats Archives - Page 50 of 107

Cyber investigations, threat hunting and research: More art than science

Issued by: Help Net Security

While it’s true that threat hunting, incident response, and threat research all have their foundations in science (operating system theory and architecture, computer language and compilation, protocols, hardware and memory architecture, logic, etc.), throughout my entire career I have found it is also fundamentally true that the most successful threat hunters, incident responders, and threat…

Malware & Threats

Microsoft Warns of Attacks on Aerospace, Travel Sectors

Issued by: Security Week

The attacks start with spear-phishing messages that employ lures relevant to the targeted organizations, such as aviation, travel, and cargo, and deliver an image that pretends to be a PDF file and which contains an embedded link. The attackers abuse legitimate web services and they leverage a newly identified loader dubbed Snip3 for the delivery…

Malware & Threats

Healthcare CIOs fear (and fend off) ransomware threats amid pandemic

Issued by: CIO Security

Mt. San Rafael Hospital thwarted a ransomware attack on one of its sister facilities earlier this year before anything could be compromised. The organization is still working through the details of the hack, says CIO Michael Archuleta, whose hospital is part of the BridgeCare Health Network, which includes five hospitals in Colorado. “It could have…

Malware & Threats

Cybersecurity Community Unhappy With GitHub’s Proposed Policy Updates

Issued by: Security Week

The community has been asked to provide feedback until June 1 on proposed clarifications regarding exploits and malware hosted on GitHub. “Our policy updates focus on the difference between actively harmful content, which is not allowed on the platform, and at-rest code in support of security research, which is welcome and encouraged. These updates also…

Malware & Threats

FluBot Android Malware Expected to Start Targeting U.S.

Issued by: Security Week

Initially observed in Spain, FluBot has since expanded operations to reach Germany, Hungary, Italy, Poland, and the UK as well, with tens of thousands of malicious SMS messages that leverage FedEx, DHL, and Correos lures being sent hourly. The malware is believed to have made over 7,000 victims in the UK alone, where the campaign…

Malware & Threats

Dark Hash Collisions: New Service Confidentially Finds Leaked Passwords

Issued by: Security Week

Businesses need to keep their user accounts safe. But there are billions of username and password pairs available to hackers on the dark web. User tendency to reuse passwords on multiple accounts means that hackers may already have your users’ credentials, stolen from a breached third party. The result is the credential stuffing attack. Credential…

Malware & Threats

The Logistics Supply Chain is Being Targeted by Both Cybercriminals and Nation States

Issued by: Security Week

Attacks against the supply chain have been growing in quantity and gravity for several years, culminating in SolarWinds. Most discussion has focused on the software supply chain, but a new study shows that the physical logistics supply chain is equally subject, and susceptible, to cyberattacks. The Covid-19 pandemic has increased and highlighted the world’s reliance…

Malware & Threats

Europol Report Highlights Pandemic’s Effect on Cybercrime

Issued by: Security Week

Organized crime is not limited to cybercrime, but cybercrime has become a major part of organized criminal activity. Europol sees this increasing – business transformation, the increasingly digital society, and the growth of remote working all provide new vulnerabilities and more opportunities for exploitation. “Critical infrastructures will continue to be targeted by cybercriminals in the…

Malware & Threats

Siemens Releases Several Advisories for ‘NAME:WRECK’ Vulnerabilities

Issued by: Security Week

IoT security company Forescout on Tuesday revealed that four popular TCP/IP stacks — specifically FreeBSD, Siemens’ Nucleus, IPnet and NetX — are affected by a total of nine DNS-related flaws that can be exploited for remote code execution (including to take control of targeted devices), DoS attacks, and DNS cache poisoning. The vulnerabilities, collectively tracked…

Malware & Threats

Collaboration Platforms Increasingly Abused for Malware Distribution, Data Exfiltration

Issued by: Security Week

With the COVID-19 pandemic forcing many organizations to switch to telework, interactive communication platforms such as Discord and Slack saw increased adoption and adversaries didn’t wait long to start abusing these tools. According to Cisco’s Talos researchers, the past year has shown a significant increase in the abuse of such platforms as part of malicious…