malware
-
Security researcher Marcus Hutchins pleads not guilty, returns to Twitter
After being nabbed by the FBI while leaving DefCon, the security researcher who singlehandedly neutralized the WannaCry malware attack earlier this year is back online. Marcus Hutchins appeared for his arraignment at a federal court in Wisconsin on Monday where he entered a not guilty plea and successfully argued that he should be allowed internet access. Read More
-
Facebook password stealing software comes packed with a trojan that steals your passwords
Facebook malware is nothing new, but an emerging threat offers some unique karmic retribution. In an unpublished report, security researchers at Sydney-based LMNTRIX Labs have identified software advertising itself as a Facebook password stealer that injects malicious code in the background once downloaded, making the user vulnerable to having their own credentials stolen. Read More
-
WannaCry hero heads into Tuesday hearing as the security community crowdfunds his defense
Over the weekend, the security community raised legal funds for Marcus Hutchins, the researcher famed for stopping the spread of the malware known as WannaCry. Hutchins, also known as MalwareTech, was arrested by the FBI last week for his alleged role in disseminating Kronos, a banking trojan that first wrought havoc in 2014. Read More
-
FBI arrests WannaCry hero for alleged role in Kronos banking malware
A malware researcher hailed as a hero earlier this year has been arrested by the FBI for his alleged role in distributing the banking malware known as Kronos. Marcus Hutchins, also known as @malwaretechblog, was detained and then arrested by the bureau at the airport as he was leaving the Def Con hacking conference in Las Vegas. Read More
-
Crunch Network
Taking the bite out of the non-malware threat
#NotPetya can’t wipe what isn’t there. Read More
-
More than half of major malware attack’s victims are industrial targets
A new report examining the targets and intended effects of this week’s massive malware attack comes up with some significant insights. The attack, initially believed to be a variation of commercial malware software known as Petya, appeared to be a vast ransomware scheme. As the story developed, it became clear that the attack was more destructive than it was lucrative. Read More
-
In aftermath of Petya, congressman asks NSA to stop the attack if it knows how
Today Democratic Congressman Ted Lieu of California wrote to the NSA in an appeal for the agency to do anything in its power to stop the spread of the global ransomware (or potentially just disguised as ransomware) attack that began yesterday. Lieu seeks to hold the NSA accountable for its leaked exploit, known as EternalBlue, which appears to have facilitated the malware’s spread. Read More
-
Microsoft looks to the cloud to make Windows 10 safer for enterprise users
We already knew that the next version of Windows 10, the Fall Creators Update, will feature a large number of new tools for consumers. While it was always clear that business users would also get their fair share of updates, Microsoft remained pretty quiet about what those would look like. That’s changing this week, as the company today announced a number of new security features for… Read More
Latest Crunch Report
-
Hackers are hiding malware in subtitle files
An impressive new exploit gives hackers the ability to control your desktop through malware spread by fake movie subtitles. The exploit, which essentially dumps the malware onto your desktop and then notifies the attacker, affects users of video players like Popcorn Time and VLC. Checkpoint found that malformed subtitle files can give hackers the ability to embed code into subtitle files… Read More
-
DocuSign confirms customer email addresses were stolen and used in phishing campaign
DocuSign, the owner of eSignature, one of the most popular digital signature services, said today that a database of customer emails was breached and used in a phishing campaign that began last week. Read More
-
The Shadow Brokers are back with exploits for Windows and global banking systems
It’s been several months since their last major exploit, but the hacking group dubbed Shadow Brokers is back. The group, which last year dumped malware it had allegedly stolen from The Equation Group, a hacking team associated with the NSA, posted new files over the weekend and followed up today with a dump of Windows exploits. The latest files contain tools apparently designed to… Read More
-
Researchers simulate a ransomware attack on industrial controls
Researchers at the Georgia Institute of Technology have created a form of ransomware that can hit us where it really counts: the water supply. Their program installed itself in a model water plant and allowed the researchers to change chlorine levels, shut down water valves, and send false readings to monitoring systems. “We are expecting ransomware to go one step farther, beyond the… Read More
-
The new Barnes & Noble Nooks come with free malware
Barnes & Noble began outsourcing its Nook e-readers a few years ago after a partnership with Samsung and their latest $50 Nook 7 android tablet, announced last month, shows us how that has worked out for them. Their latest e-reader includes ADUPS, a firmware that sends user data back to the manufacturer or an interested hacker. This is the same malware that researchers found on cheap… Read More
-
Researchers sabotage 3D printer files to destroy a drone
Researchers at Ben-Gurion University of the Negev (BGU), the University of South Alabama, and Singapore University of Technology and Design have successfully injected malicious code into a computer which, in turn, added invisible commands to a file containing a 3D model of a drone propeller. When they printed the model and attached it to the drone, the propeller broke upon take-off. This… Read More
-
Security startup Malwarebytes acquires AdwCleaner to nip adware in the bud
After raising $50 million earlier this year from Fidelity, security startup Malwarebytes said that it would use some of the funding for acquisitions, and today comes some related news. The company is acquiring a startup out of France called AdwCleaner, whose product specifically tackles and removes adware and has seen a total of 200 million downloads across Windows XP, Vista, 7, 8, 8.1, 10… Read More
-
Everything you need to know about the NSA hack (but were afraid to Google)
In what Edward Snowden deems “not unprecedented” hackers calling themselves the Shadow Brokers have collected NSA-created malware from a staging server run by the
Equation Group, an internal hacking team. The Shadow Brokers published two chunks of data, one “open” chunk and another encrypted file containing the “best files” that they will sell for at least… Read More -
Metapacket analyzes outbound network traffic to flag and block malware
Metapacket, one of YC’s current batch of startups, is hoping to get its SaaS on corporates’ list of essential threat detection software with a technique to stop malware attacks by analyzing outbound network traffic to determine whether it’s human or not. Read More
-
Banking Trojan Zeus Panda shambles into Brazil ahead of Olympics
It seems there’s no limit to the perils being faced by athletes at the Rio 2016 Olympics: not just their competitors, but toxic water, poor accommodations and impressive mobile bills. Add malicious pandas to the menu — virtual ones, at least. A nasty Trojan known as Zeus Panda has made its way to the Olympic host just in time for an influx of visitors. Read More
Message Us