malware
-
Crunch Network
Taking the bite out of the non-malware threat
#NotPetya can’t wipe what isn’t there. Read More
-
More than half of major malware attack’s victims are industrial targets
A new report examining the targets and intended effects of this week’s massive malware attack comes up with some significant insights. The attack, initially believed to be a variation of commercial malware software known as Petya, appeared to be a vast ransomware scheme. As the story developed, it became clear that the attack was more destructive than it was lucrative. Read More
-
In aftermath of Petya, congressman asks NSA to stop the attack if it knows how
Today Democratic Congressman Ted Lieu of California wrote to the NSA in an appeal for the agency to do anything in its power to stop the spread of the global ransomware (or potentially just disguised as ransomware) attack that began yesterday. Lieu seeks to hold the NSA accountable for its leaked exploit, known as EternalBlue, which appears to have facilitated the malware’s spread. Read More
-
Microsoft looks to the cloud to make Windows 10 safer for enterprise users
We already knew that the next version of Windows 10, the Fall Creators Update, will feature a large number of new tools for consumers. While it was always clear that business users would also get their fair share of updates, Microsoft remained pretty quiet about what those would look like. That’s changing this week, as the company today announced a number of new security features for… Read More
-
Hackers are hiding malware in subtitle files
An impressive new exploit gives hackers the ability to control your desktop through malware spread by fake movie subtitles. The exploit, which essentially dumps the malware onto your desktop and then notifies the attacker, affects users of video players like Popcorn Time and VLC. Checkpoint found that malformed subtitle files can give hackers the ability to embed code into subtitle files… Read More
-
DocuSign confirms customer email addresses were stolen and used in phishing campaign
DocuSign, the owner of eSignature, one of the most popular digital signature services, said today that a database of customer emails was breached and used in a phishing campaign that began last week. Read More
-
The Shadow Brokers are back with exploits for Windows and global banking systems
It’s been several months since their last major exploit, but the hacking group dubbed Shadow Brokers is back. The group, which last year dumped malware it had allegedly stolen from The Equation Group, a hacking team associated with the NSA, posted new files over the weekend and followed up today with a dump of Windows exploits. The latest files contain tools apparently designed to… Read More
-
Researchers simulate a ransomware attack on industrial controls
Researchers at the Georgia Institute of Technology have created a form of ransomware that can hit us where it really counts: the water supply. Their program installed itself in a model water plant and allowed the researchers to change chlorine levels, shut down water valves, and send false readings to monitoring systems. “We are expecting ransomware to go one step farther, beyond the… Read More
-
The new Barnes & Noble Nooks come with free malware
Barnes & Noble began outsourcing its Nook e-readers a few years ago after a partnership with Samsung and their latest $50 Nook 7 android tablet, announced last month, shows us how that has worked out for them. Their latest e-reader includes ADUPS, a firmware that sends user data back to the manufacturer or an interested hacker. This is the same malware that researchers found on cheap… Read More
Latest Crunch Report
-
Researchers sabotage 3D printer files to destroy a drone
Researchers at Ben-Gurion University of the Negev (BGU), the University of South Alabama, and Singapore University of Technology and Design have successfully injected malicious code into a computer which, in turn, added invisible commands to a file containing a 3D model of a drone propeller. When they printed the model and attached it to the drone, the propeller broke upon take-off. This… Read More
-
Security startup Malwarebytes acquires AdwCleaner to nip adware in the bud
After raising $50 million earlier this year from Fidelity, security startup Malwarebytes said that it would use some of the funding for acquisitions, and today comes some related news. The company is acquiring a startup out of France called AdwCleaner, whose product specifically tackles and removes adware and has seen a total of 200 million downloads across Windows XP, Vista, 7, 8, 8.1, 10… Read More
-
Everything you need to know about the NSA hack (but were afraid to Google)
In what Edward Snowden deems “not unprecedented” hackers calling themselves the Shadow Brokers have collected NSA-created malware from a staging server run by the
Equation Group, an internal hacking team. The Shadow Brokers published two chunks of data, one “open” chunk and another encrypted file containing the “best files” that they will sell for at least… Read More -
Metapacket analyzes outbound network traffic to flag and block malware
Metapacket, one of YC’s current batch of startups, is hoping to get its SaaS on corporates’ list of essential threat detection software with a technique to stop malware attacks by analyzing outbound network traffic to determine whether it’s human or not. Read More
-
Banking Trojan Zeus Panda shambles into Brazil ahead of Olympics
It seems there’s no limit to the perils being faced by athletes at the Rio 2016 Olympics: not just their competitors, but toxic water, poor accommodations and impressive mobile bills. Add malicious pandas to the menu — virtual ones, at least. A nasty Trojan known as Zeus Panda has made its way to the Olympic host just in time for an influx of visitors. Read More
-
Beware the fake Pokémon Go apps
Earlier this month, the first Pokémon Go malware was spotted in the wild, but the app was not much of a threat to users as it never made it into the official Google Play store for download. The same cannot be said of a new group of dangerous applications targeting Pokémon Go users by promising cheats, tips, and other functionality. Despite their innocuous-sounding titles, the apps… Read More
-
Crunch Network
Your website may be engaged in secret criminal activity
Most of us think of website hacks as illicit activities aimed at siphoning critical information or disrupting the business of website owners. But what happens when your site becomes hacked, not for the purpose of harming you but rather to further the ends of other parties? Most likely, the attackers would manage to feed off your resources and reputation for months or years without being… Read More
-
Here comes the Pokémon Go malware
Well, that didn’t take long. Pokémon Go, the massively popular new game that’s bigger than Tinder, and poised to top Twitter in terms of daily users, has now been targeted by malware creators. Security researchers at Proofpoint spotted a malicious Pokémon Go app in the wild that’s infected with a remote access tool called “DroidJack,” which would give… Read More
-
Pokemon Go wants to catch (almost) all your app permissions
Let’s be honest, players of Pokemon Go aren’t going to care a Joltik or a Flabébé about the app permissions required to roam their neighbourhoods garnering the disproving glances of seniors as they fling invisible poke balls at the rose bushes. Read More
Message Us