VirusTotal Multisandbox += Sangfor ZSand
VirusTotal multisandbox project welcomes Sangfor ZSand. The ZSand currently focuses on PE files,with extensions to other popular file types like javascript and Microsoft office to be released soon. In their own words: ZSand, developed by Sangfor Technologies’ Cloud Computing & Security Team, is an agentless behavioral analysis engine incorporating multiple innovative techniques. At the systems […] more…The Tetrade: Brazilian banking malware goes global
Introduction Brazil is a well-known country with plenty of banking trojans developed by local crooks. The Brazilian criminal underground is home to some of the world’s busiest and most creative perpetrators of cybercrime. Like their counterparts’ in China and Russia, their cyberattacks have a strong local flavor, and for a long time, they limited their […] more…Dissecting Geost: Exposing the Anatomy of the Android Trojan Targeting Russian Banks
The Android banking trojan Geost was first revealed in a research by Sebastian García, Maria Jose Erquiaga and Anna Shirokova from the Stratosphere Laboratory. They detected the trojan by monitoring HtBot malicious proxy network. The botnet targets Russian banks, with the victim count at over 800,000 users at the time the study was published in […] more…Ztorg: money for infecting your smartphone
This research started when we discovered an infected Pokémon GO guide in Google Play. It was there for several weeks and was downloaded more than 500,000 times. We detected the malware as Trojan.AndroidOS.Ztorg.ad. After some searching, I found some other similar infected apps that were being distributed from the Google Play Store. The first of […] more…More information
- Berks Router Upgrade
- Yahoo! to Warn Users of State-Sponsored Attacks
- Organizations Feel Threat of Nation-State Attacks, Survey Shows
- iCloud users take note: Apple two-step protection won’t protect your data
- Apple Patches Vulnerabilities Disclosed at Pwn2Own
- John McAfee launches funding drive for password replacement tech
- A Quick Introduction to the MITRE ATT&CK Framework
- iOS 8.1.1, iPhone 4S, and iPad 2: A little faster, kind of, sometimes
- Microsoft Windows GDI Component CVE-2018-8424 Information Disclosure Vulnerability
- Garfield Garfield True, or the story behind Syrian Malware, .NET Trojans and Social Engineering