Spam and phishing in Q1 2017Spam: quarterly highlights Spam from the Necurs botnet We wrote earlier about a sharp increase in the amount of spam with malicious attachments, mainly Trojan encryptors. Most of that spam was coming from the Necurs botnet, which is currently considered the world’s largest spam botnet. However, in late December 2016, the network’s activity almost ceased […] more…
Lurk Banker Trojan: Exclusively for RussiaOne piece of advice that often appears in closed message boards used by Russian cybercriminals is “Don’t work with RU”. This is a kind of instruction given by more experienced Russian criminals to the younger generation. It can be interpreted as: “don’t steal money from people in Russia, don’t infect their machines, don’t use compatriots […] more…
Adwind: FAQDownload full report PDF We have become aware of unusual malware that was found in some banks in Singapore. This malware has many names – it is known as Adwind RAT (Remote Access Tool), AlienSpy, Frutas, Unrecom, Sockrat, JSocket, and jRat. It is a backdoor available for purchase, and is written entirely in Java which […] more…
The Chronicles of the Hellsing APT: the Empire Strikes BackIntroduction One of the most active APT groups in Asia, and especially around the South China Sea area is “Naikon”. Naikon plays a key part in our story, but the focus of this report is on another threat actor entirely; one who came to our attention when they hit back at a Naikon attack. Naikon […] more…
- Security lessons from the 2018 Pyeongchang Winter Olympics
- New iMac specs: Should you buy it?
- Hackers Are Using MailChimp to Spread Malware
- What Does Bad Advice Look Like?
- Apple chops Safari’s TLS certificate validity down to one year
- Security researchers hijack celebrity Twitter accounts, and prove claimed fix failed
- IOActive’s Cesar Cerrudo, warns of Twitter privacy issues
- Microsoft Internet Explorer CVE-2013-3122 Memory Corruption Vulnerability
- New Zealand PM orders inquiry into wiretapping in Megaupload case
- Advent tip #10: Don’t put off those updates!