Menu

Blog

Archive for the ‘cybercrime/malcode’ category: Page 125

Apr 23, 2021

Hackers use email phishing campaign to deploy multiple variants of Trojans

Posted by in categories: cybercrime/malcode, government, law

A new phishing campaign targets specific targets by trying to distribute various remote access Trojan (RAT) variants. According to Cisco Talos Intelligence researchers, this hacking campaign was identified as “Fajan” and could be being operated from an Arabic-speaking country.

Experts believe this campaign would have started in early March, starting with a commitment to “low-profile” targets to determine whether malware samples were properly distributed or some debugging process was needed.

Continue reading “Hackers use email phishing campaign to deploy multiple variants of Trojans” »

Apr 23, 2021

Giant Android botnet compromise thousands of Internet TV users

Posted by in categories: cybercrime/malcode, mobile phones, robotics/AI

Human Security cybersecurity specialists reveal the finding of a massive botnet made up of compromised Android devices. This malicious operation, identified as Pareto, would aim to conduct advertising fraud related to payment connected television (CTV) services and would so far be made up of about one million infected devices.

As you will recall, the term botnet refers to a network of computer systems committed to a specific malware variant, executed autonomously and automatically and under remote control by attack operators.

Continue reading “Giant Android botnet compromise thousands of Internet TV users” »

Apr 23, 2021

More than 1 million admin credentials to access Windows RDP servers for sale on dark web hacking forum

Posted by in category: cybercrime/malcode

A recent security report mentions that a dark web leak containing access keys has been published to more than 1.3 million Windows Remote Desktop servers. This is a clear indication of the scope of cybercrime and could even be binding on other incidents of which cybersecurity community knows little.

It’s not all bad news, as network administrators will also benefit from a new service launched by advanced cybersecurity firm Advanced Intel called RDPwned that allows you to verify whether an organization’s RDP credentials have been sold on the hacking black market.

Continue reading “More than 1 million admin credentials to access Windows RDP servers for sale on dark web hacking forum” »

Apr 23, 2021

Cybercriminals Using Telegram Messenger to Control ToxicEye Malware

Posted by in category: cybercrime/malcode

Telegram Messenger being used by cybercriminals to control ToxicEye Malware.

Apr 20, 2021

Hackers Used to Be Humans. Soon, AIs Will Hack Humanity

Posted by in categories: cybercrime/malcode, economics

Like crafty genies, AIs will grant our wishes, and then hack them, exploiting our social, political, and economic systems like never before.

Apr 19, 2021

Malware That Spreads Via Xcode Projects Now Targeting Apple’s M1-based Macs

Posted by in categories: cryptocurrencies, cybercrime/malcode

Hackers have retooled an Xcode malware campaign to work with Apple’s new M1 chips and steal data from cryptocurrency apps.

Apr 19, 2021

Cambridge Quantum pushes into NLP and quantum computing with new head of AI

Posted by in categories: cybercrime/malcode, quantum physics, robotics/AI

Cambridge Quantum Computing (CQC) hiring Stephen Clark as head of AI last week could be a sign the company is boosting research into ways quantum computing could be used for natural language processing.

Quantum computing is still in its infancy but promises such significant results that dozens of companies are pursuing new quantum architectures. Researchers at technology giants such as IBM, Google, and Honeywell are making measured progress on demonstrating quantum supremacy for narrowly defined problems. Quantum computers with 50–100 qubits may be able to perform tasks that surpass the capabilities of today’s classical digital computers, “but noise in quantum gates will limit the size of quantum circuits that can be executed reliably,” California Institute of Technology theoretical physics professor John Preskill wrote in a recent paper. “We may feel confident that quantum technology will have a substantial impact on society in the decades ahead, but we cannot be nearly so confident about the commercial potential of quantum technology in the near term, say the next 5 to 10 years.”

Continue reading “Cambridge Quantum pushes into NLP and quantum computing with new head of AI” »

Apr 16, 2021

Cybercriminals are selling access to OTP code-generating company servers

Posted by in categories: cryptocurrencies, cybercrime/malcode

Cybersecurity specialists report that a hacker is selling real-time access to a single-use password system, allowing cybercriminals to access Facebook, Twitter, Google, Amazon, Microsoft, Signal, Telegram accounts, among many others without having to obtain multi-factor authentication codes.

This report should be taken seriously, as a related attack could engage billions of users. In turn, cybersecurity experts point out that this is the consequence of using servers that handle OTP requests from online service users.

The first reports on this hacker were published by researcher Rajshekhar Rajaharia, who mentions that the hacker offers 50 GB of data extracted from multiple sources and webshell access to the OTP generating platform. The seller asks for about $5000 USD in cryptocurrency, although Rajaharia notes that initially the hacker planned to sell this information for about $18000 USD.

Apr 15, 2021

Malware Variants: More Sophisticated, Prevalent and Evolving in 2021

Posted by in categories: cybercrime/malcode, evolution

Employees play a vital role in ensuring their company’s cybersecurity bubble remains intact. Many malware campaigns begin by sending an e-mail communication to employees. To learn basic cybersecurity hygiene, employees must become familiar with password management, identify and report security threats, and recognize suspicious behavior. Regular content and training will assist employees in countering any malware threats they encounter.

Adopt a culture of comprehensive security.

Given the ongoing evolution of malware attacks and their capability to surpass what they were capable of, organizations should prioritize a strong malware protection strategy. Consultation with experienced cybersecurity experts like Indusface can help them create a solution that meets their needs.

Apr 15, 2021

1-Click Hack Found in Popular Desktop Apps — Check If You’re Using Them

Posted by in categories: bitcoin, cybercrime/malcode, internet

Multiple one-click vulnerabilities have been discovered across a variety of popular software applications, allowing an attacker to potentially execute arbitrary code on target systems.

The issues were discovered by Positive Security researchers Fabian Bräunlein and Lukas Euler and affect apps like Telegram, Nextcloud, VLC, LibreOffice, OpenOffice, Bitcoin/Dogecoin Wallets, Wireshark, and Mumble.

“Desktop applications which pass user supplied URLs to be opened by the operating system are frequently vulnerable to code execution with user interaction,” the researchers said. “Code execution can be achieved either when a URL pointing to a malicious executable (.desktop,.jar,.exe, …) hosted on an internet accessible file share (nfs, webdav, smb, …) is opened, or an additional vulnerability in the opened application’s URI handler is exploited.”