The “Nitro” Campaign and Java Zero-Day
The security community has been focused on the new Java zero-day exploits that appear to have been taken from a Chinese exploit pack (known as Gondad or KaiXin) used in targeted attacks by the “Nitro” cyber-espionage campaign and then incorporated into criminal operations using the BlackHole Exploit Kit. While the connections between these developments are […] more…APT43: An investigation into the North Korean group’s cybercrime operations
Introduction As recently reported by our Mandiant’s colleagues, APT43 is a threat actor believed to be associated with North Korea. APT43’s main targets include governmental institutions, research groups, think tanks, business services, and the manufacturing sector, with most victims located in the United States and South Korea. The group uses a variety of techniques and […] more…The Tetrade: Brazilian banking malware goes global
Introduction Brazil is a well-known country with plenty of banking trojans developed by local crooks. The Brazilian criminal underground is home to some of the world’s busiest and most creative perpetrators of cybercrime. Like their counterparts’ in China and Russia, their cyberattacks have a strong local flavor, and for a long time, they limited their […] more…More information
- IOTA: A Cryptocurrency Without a Blockchain Built to Outperform Bitcoin
- Visa will test biometric EMV specification in South Africa
- A Hacked Database Prompts Debate about Genetic Privacy
- Microsoft Excel CVE-2018-0796 Remote Code Execution Vulnerability
- NSA denies Facebook snooping as Zuckerberg lays into Obama
- Chinese Military Behind South China Sea Cyber Espionage Attacks
- Exploited Chrome Zero-Day Patched by Google
- LastPass Says DevOps Engineer Home Computer Hacked
- Google adds Recaptcha API to Android to block the bots
- News in brief: Virginia ditches voting machines; Chrome to warn of MiTM hacks; Beijing cracks down on Bitcoin