Malware News, Articles and Updates

Cyber-espionage spear-phishing campaign hits Saudi Arabia

Spear-phishing attacks aimed at placing cyber-espionage malware on government computers using an infected Word document are being blamed on about a dozen Saudi Arabian agencies.

Malicious apps make nearly a million Minecrafters feel like blockheads

ESET researchers found 87 fake Minecraft mod apps that either redirected users to scam websites or were actually an aggressive ad-displaying downloader.

London and Manchester have the highest rates of malware in the UK

Malware gets on computers in various ways. Many times, it is installed when computer users click on bogus links in spam emails or hacked social media messages.

Spam hitting Germans with personalised messages

A spam campaign that targets recipients with personalised messages is spreading in Germany, similar to a previous scourge there earlier this year and another that spread in the UK in April 2016.

The halting problem - why malware detection is doomed to fail

Ian Pratt discusses how and why the traditional detection-based approach employed by so many solutions doesn't work. Detecting every malicious program is mathematically impossible - so build proactive defences.

Cyber-criminals committed to familiar tactics for carrying out attacks

While ransomware delivered the greatest impact and growth in 2016, threat actors still attempt data breaches and theft through more traditional methods.

Symantec finds fake AV being distributed using HSBC phishing emails

Fake HSBC emails are being spread, asking users to install a malicious version of Rapport, a legitimate security program designed to protect online bank accounts from fraud.

Malware found pre-installed on some Android devices

More than three dozen Android devices have been found to contain 21 different types of malware, including Loki, that came pre-installed on the phone read-only memory (ROM).

Thousands of NHS Wales staff lose personal data in breach

The details of thousands of NHS staffers in Wales have been stolen from the servers of a private contractor, Landauer.

African banks and telcos seek partners to fight cyber-threats

African banks and telcos are seeking partnership approaches to curb threats of mobile banking malware.

ICYMI: Spam leak; password loss; Privacy Shield; hospital hit; app in iframe

In Case You Missed It: Spammer breached; Yahoo/gmail passwords; Privacy Shield concern; malware shuts hospital; 132 apps in iframe malware.

New exploit kits found leveraging vulnerabilities in web browsers

The techniques exploit kit authors use to hide their activities are frequently changing, and security researchers work hard to analyse and block these new threats.

PandaLabs: Attacking computers without running any malware

PandaLabs has detected an attack vector using Windows Sticky Keys which allows the takeover of a computer without running any malware.

Skimmer adware spent two months in Google Play

Checkpoint researchers spotted a malware, dubbed Skimmer, in the Google Play store which uses a unique and innovative tactics evade detection.

Cylance says RawPOS is back with a fresh new signature, not much else

The California-based security has published an analysis which claims not much effort has been put into the new variant, and as a result was a doddle to catch.

Locked out: Hotel latest to pay up in ransomware attack

Peter Godden advises how to avoid a situation such as being hit by a fourth cyber-attack, as an Austrian hotel experienced earlier this year.

Version of Facebook Lite app weighed down by Spy FakePlay mobile malware

A version of the social media mobile app Facebook Lite, most likely available via third-party sites in China, was found infected with malware that can steal personal information, Malwarebytes reported on Monday.

Advanced new destructive wiper malware discovered in the wild

In the wake of the Shamoon malware attacks, a new wiper targets the Middle East and shows interest in European targets.

Proton malware uses real Apple code-signing signatures

Researchers have spotted a piece of malware that has somehow gotten hold of genuine Apple code-signing signature.

Researchers find 132 apps on Play Store infected with iFrame malware

According to the researchers, the apps were infected with "tiny hidden iFrames that link to malicious domains in their local HTML pages".

ICYMI: MySQL ransom; Font scam; UK strategy; White Hat; Luxb'g DDoS'd

In case you missed it: MySQL dBs ransomed; Chome font scam; UK digital strategy; White Hat careers; Luxembourg DDoS'd

New malware attack shutters London hospital

A previously unseen malware is being blamed for an attack on a London hospital that forced the facility to shut down a segment of its systems for a few days as a precautionary measure.

Dridex 4.0 hides from researchers' gaze with AtomBombing technique

IBM researchers have discovered that the latest version of Dridex uses an AtomBombing technique to elude researchers.

Government-backed malware campaign targets South Korean public sector

A sophisticated and likely government-backed malware campaign has targeted the public sector in South Korea.

Google Chrome users targeted with 'missing font' malware scam

Hackers are at it once again, this time targeting Google Chrome users to install a fake "missing font" and then infect them with malware.

Poorly coded ransomware attacks Macs and encrypts files

Newly discovered ransomware dubbed Patcher is targeting Mac computers, but according to researchers, the malware is so poorly coded, it locks up files for good.

Mirai evolves as Windows-based spreader is discovered on 500 systems

A Mirai spreader for Windows has been discovered on hundreds of systems, showing a maturing of the infamous botnet building malware.

Vendor hiding supply chain cyber-attack gets uncovered by Krebs

Following the hustle and bustle of RSA 2017 in California, investigative reporter Brian Krebs digs deeper into a report by RSA which he claims tries to bury a major cyber-attack.

Malware targeting banks contains apparent false flags designed to frame Russians

Malware samples recovered from watering hole attacks recently targeting banks across the globe contain false flags that fraudulently suggest Russian actors are behind the campaign, even though the most likely culprit is the Lazarus Group.