New MacOS Dacls RAT Backdoor Show Lazarus’ Multi-Platform Attack Capability
By Gabrielle Joyce Mabutas With additional insights/analysis from Kazuki Fujisawa A one-time password (OTP) system involves the use of a generated password that can only be used once to log in and access specific online services. Often managed by a third-party provider, this rolling password system aims to reduce unauthorized intrusions to systems via compromised […] more…Exposing Modular Adware: How DealPly, IsErIk, and ManageX Persist in Systems
By RonJay Caragay, Fe Cureg, Ian Lagrazon, Erika Mendoza, and Jay Yaneza (Threats Analysts) Adware isn’t new and they don’t spark much interest. A lot of them are overlooked and underestimated because they’re not supposed to cause harm — as its name suggests, adware is advertising-supported software. However, we have constantly observed suspicious activities caused […] more…Andromeda Botnet Resurfaces
The Andromeda botnet – first spotted in late 2011 – has recently resurfaced. This threat arrives via a familiar means: spammed messages with malicious attachments or links to compromised websites hosting Blackhole Exploit Kit (BHEK) code. Here is one spam message we saw recently: Figure 1. Sample spammed message Andromeda itself is highly modular, and […] more…More information
- Even internet security pros can be hacked
- FBI suspends case against Apple after feds find way to break into seized iPhone
- Resolved: PASS will be unavailable on 3/26
- Update: PASS Upgrade on Saturday, Mar 4
- Cloud Security Firm Aporeto Raises $20 Million
- Zoom Vulnerability Lets Hackers Hijack Your Webcam
- Maintenance on Canvas’s Internal Zoom Feature to take place Wednesday, March 6, 2019 from 9:30 a.m. to 11:00 a.m. ET
- IaaS Creating New Variant of Shadow IT
- RawGit CDN is Abused by CryptoLoot Cryptominers
- Flaw in "Spring Social" Puts User Accounts at Risk