ATMZombie: banking trojan in Israeli waters
On November 2015, Kaspersky Lab researchers identified ATMZombie, a banking Trojan that is considered to be the first malware to ever steal money from Israeli banks. It uses insidious injection and other sophisticated and stealthy methods. The first method, dubbed “proxy-changing”, is commonly used for HTTP packets inspections. It involves modifying browser proxy configurations and […] more…Mozilla Persona login system to shut down end November
Mozilla’s login system Persona will be shut down on Nov. 30 as its usage is low and has not grown over the last two years. The foundation’s decision to take persona.org and related domains offline follows a move in March 2014 to transition the running of the project from full-time developers to a community of […] more…Sophos takes rare step of citing Microsoft flaw as a must-fix
Sophos generally steers clear of pointing to a single patch from Microsoft’s Patch Tuesday, but is breaking its own rule this month by highlighting one it says can prevent a world of hurt. The patch – MS15-034 – addresses a bug that could allow remote-code execution on a victim machine, and that can be exploited […] more…Crypto-Ransomware Sightings and Trends for 1Q 2015
It seems that cybercriminals have yet to tire of creating crypto-ransomware malware. Since the start of 2015, we have spotted several variants of crypto-ransomware plague the threat landscape. In January, the Australia-New Zealand region was beset by variants of TorrentLocker. But we soon discovered that TorrentLocker infections were not limited to that region; Turkey, Italy, […] more…Multiplatform Boleto Fraud Hits Users in Brazil
A study conducted around June last year revealed a malware-based fraud ring that infiltrated one of Brazil’s most popular payment methods – the Boleto Bancário, or simply the boleto. While the research and analysis was already published by RSA, we’ve recently discovered that this highly profitable fraud is still out in the wild and remains […] more…Hacktivist Group CyberBerkut Behind Attacks on German Official Websites
A pro-Russian group called CyberBerkut claimed responsibility for a recent hack on certain German government websites in early January. We were able to gather some information on some of its members based on Pastebin data that had been leaked by the Ukrainian nationalist political party (Pravy Sektor). A Background on CyberBerkut CyberBerkut is an organized group […] more…CUTWAIL Spambot Leads to UPATRE-DYRE Infection
A new spam attack disguised as invoice message notifications was recently seen spreading the UPATRE malware, that ultimately downloads its final payload- a BANKER malware related to the DYREZA/DYRE banking malware. Background In early October we observed a surge of spammed messages sent by the botnet CUTWAIL/PUSHDO, totaling to more than 18,000 messages seen in a single day. CUTWAIL/PUSHDO has been in […] more…Paying For Content
I remember setting up our first website. That was 20 years ago, in 1994. When the Web was very young and there were only a handful of websites, it was easy to forecast that the Web was going to grow. And indeed, during these past 20 years, it has exploded in size. What’s even more […] more…Understanding the WordPress Security Plugin Ecosystem
As a child, did you ever play that game where you sit in a circle and one person is responsible for whispering something into one persons ear, and that message gets relayed around the circle? Wasn’t it always funny to see what the final message received would be? Oh and how it would have morphed […] more…Spam in May 2014
Spam in the spotlight In the run-up to the summer, spammers offered their potential customers seedlings and seeds for gardening. In addition, English-language festive spam in May was dedicated to Mother’s Day – the attackers sent out adverts offering flowers and candies. Holiday spam for Mom As usual, the spammers were very busy in the […] more…PlayStation 4 and Xbox One Survey Scams Spotted
With the recent release of the PlayStation 4 in North America and the upcoming release of the Xbox One, November is fast becoming an exciting month for gamers. However, it appears that they aren’t the only ones looking forward to these launches. We spotted several survey scams that took advantage of the buzz surrounding the […] more…SINOWAL Attempts To Disable Rapport, Aid ZBOT
The year might be coming to a close but we’re still seeing our 2013 predictions come true. We encountered an attack that featured an old malware with new routines. This malware, detected as BKDR_SINOWAL.COP specifically attempts to disable the Rapport software from Trusteer. Figure 1. Code that looks for the Trusteer Rapport module Rapport is software […] more…Court: Being ‘Electronically Present’ Can Make You Liable
A recent ruling by the New Jersey Court of Appeals has sparked a nationwide debate over exactly who is liable when an accident is caused by a distracted driver. According national reports, the court considered the claim of two victims who both lost their legs when a texting teen driver ran into their motorcycle. While […] more…News of the Royal Birth is a Goldmine for Spammers
Breaking news, no matter how wonderful or horrible it may seem, can be a breeding ground for scams, especially on the Internet. Just as ticket scalpers look to make a profit off concerts and sporting events, scammers are looking to take advantage of people on the hunt for the exclusive scoop in big name news. […] more…Spy? Where? Mobile Spyware Hiding Right Under Your Nose
Some days it feels like the whole world is going mobile. We tweet, we text, we browse the world from small devices that fit into our hands. People from across the globe can reach out to each other with one message. You can buy a plane ticket while on the bus. There are apps that […] more…Smart Apps to Keep Your Teen from Texting and Driving
If you are like most parents, the “no texting and driving” comment is a daily exchange before your teen heads out the door, car keys in hand. A 2012 U.S. National Highway Traffic Safety Administration (NHTSA) survey found that drivers 18 to 20 showed the highest level of mobile phone involvement in crashes or near-crashes. […] more…More information
- Fewer than half of Facebook and Google users understood the sites’ privacy policies
- EU will not suspend safe harbor data privacy agreement with the US
- Prepare to patch a critical flaw in Windows and Samba file sharing in 3 weeks
- Need for cyber-insurance heats up, but the market remains immature
- Bitcoin Miners Brace for the ‘Halving’—and Race to Cash In
- Apple’s Alleged Throttling of Older iPhones With Degraded Batteries Causes Controversy
- Bank of England to hire penetration testers to attack financial firms
- Bought a brand-new phone? It could still have malware
- Cybercriminals Unleash MegaCortex Ransomware in Global Attack Campaign
- How to Set Cache Control Headers