The “Nitro” Campaign and Java Zero-Day
The security community has been focused on the new Java zero-day exploits that appear to have been taken from a Chinese exploit pack (known as Gondad or KaiXin) used in targeted attacks by the “Nitro” cyber-espionage campaign and then incorporated into criminal operations using the BlackHole Exploit Kit. While the connections between these developments are […] more…APT43: An investigation into the North Korean group’s cybercrime operations
Introduction As recently reported by our Mandiant’s colleagues, APT43 is a threat actor believed to be associated with North Korea. APT43’s main targets include governmental institutions, research groups, think tanks, business services, and the manufacturing sector, with most victims located in the United States and South Korea. The group uses a variety of techniques and […] more…The Tetrade: Brazilian banking malware goes global
Introduction Brazil is a well-known country with plenty of banking trojans developed by local crooks. The Brazilian criminal underground is home to some of the world’s busiest and most creative perpetrators of cybercrime. Like their counterparts’ in China and Russia, their cyberattacks have a strong local flavor, and for a long time, they limited their […] more…More information
- Naked Security Live – Cybersecurity tips for your own network
- Microsoft Edge CVE-2016-7286 Remote Memory Corruption Vulnerability
- To Digital and Beyond: Embracing the Future of Retail at Shop.org 2012
- Microsoft Edge CVE-2016-3269 Scripting Engine Remote Memory Corruption Vulnerability
- Resolved: IMAP Slowness
- Hackers find little demand for their stolen NSA hacking tools
- New HIPAA guidance addresses ransomware
- ‘Rogue’ Android RAT Can Take Control of Devices, Steal Data
- December 2014 Patch Tuesday Releases 7 Fixes, Addresses Microsoft Exchange Bug
- Microsoft Edge CVE-2017-8605 Scripting Engine Remote Memory Corruption Vulnerability