CactusPete APT group’s updated Bisonal backdoor
CactusPete (also known as Karma Panda or Tonto Team) is an APT group that has been publicly known since at least 2013. Some of the group’s activities have been previously described in public by multiple sources. We have been investigating and privately reporting on this group’s activity for years as well. Historically, their activity has […] more…BrandPost: How Cloud-Based Services are Helping Maintain Critical Care and Connectivity in the ‘New Normal’
France and Italy were two of the early coronavirus epicenters, but thanks to aggressive containment measures, both countries have flattened the curve. Technology providers stepped up in a variety of ways to support government and healthcare officials in their efforts to mitigate the spread of the virus, delivering cloud-based solutions to improve collaboration, maintain patient […] more…COVID-related IT job losses mount in U.S. as outbreak continues
Coronavirus spikes in parts of the U.S. in July have worsened hiring conditions for IT professionals, and management consulting firm Janco Associates now doesn’t expect any rebound in hiring until late this year or early in 2021. Janco now estimates that just 25,000 new IT jobs will be created in 2020; there are now more […] more…DDoS attacks in Q2 2020
News overview Not just one but two new DDoS amplification methods were discovered last quarter. In mid-May, Israeli researchers reported a new DNS server vulnerability that lurks in the DNS delegation process. The vulnerability exploitation scheme was dubbed “NXNSAttack”. The hacker sends to a legitimate recursive DNS server a request to several subdomains within the […] more…Spam and phishing in Q2 2020
Quarterly highlights Targeted attacks The second quarter often saw phishers resort to targeted attacks, especially against fairly small companies. To attract attention, scammers imitated email messages and websites of companies whose products or services their potential victims could be using. The scammers did not try to make any of the website elements appear credible as […] more…Incident Response Analyst Report 2019
Download full report (PDF) As an incident response service provider, Kaspersky delivers a global service that results in global visibility of adversaries’ cyber-incident tactics and techniques used in the wild. In this report, we share our teams’ conclusions and analysis based on incident responses and statistics from 2019. As well as a range of highlights, […] more…Special Delivery: Criminals Posing as Amazon Are Out to Steal User’s Data
One of the joys of online shopping is instant gratification – your purchases arrive on your doorstep in just a few days! Unfortunately, consumers aren’t the only ones taking advantage of this convenience – hackers are also using it to trick users into handing over money or data. Recently, AARP recounted several scams where cybercriminals posed as Amazon’s customer […] more…WastedLocker: technical analysis
The use of crypto-ransomware in targeted attacks has become an ordinary occurrence lately: new incidents are being reported every month, sometimes even more often. On July 23, Garmin, a major manufacturer of navigation equipment and smart devices, including smart watches and bracelets, experienced a massive service outage. As confirmed by an official statement later, the […] more…11 essential business management insights from Apple’s Q3
Apple set a record in the June quarter just gone, buoyed by strong iPad and Mac sales and a wave of iPhone SE upgrades. You can read all about the company’s fiscal details here, and officials shared some points that may be of interest to any enterprise struggling to pivot its business during the ongoing COVID-19 […] more…What’s in the latest Firefox upgrade? Firefox 79 adds under-the-hood improvements, but no pizzaz
Mozilla this week upgraded Firefox to version 79, patching 10 vulnerabilities without making any notable changes that users will see. Of the 10 security bugs, Mozilla marked four as “High,” the browser’s second-most-serious label. Firefox 79 can be downloaded for Windows, macOS and Linux from Mozilla’s site. Because Firefox updates in the background, most users […] more…Can Macs get Viruses?
Can Macs get viruses? In addition to their ability to work seamlessly with Apple devices, many users prefer Mac computers because of their perceived “inherent” security features. Apple also notifies users of periodic updates to make sure that every generation of Apple product has the most secure software version. And while Apple does go to […] more…Understanding Trojan Viruses and How to Get Rid of Them
Understanding Trojan Viruses and How to Get Rid of Them Basic online scenario—You log onto your computer and notice that something’s just not right, but you can’t quite put your finger on it. Something just seems…a bit off. If you’ve found yourself in this situation, or even thinking you are, there’s a real possibility you […] more…Ensiko: A Webshell With Ransomware Capabilities
By Aliakbar Zahravi Ensiko is a PHP web shell with ransomware capabilities that targets various platforms such as Linux, Windows, macOS, or any other platform that has PHP installed. The malware has the capability to remotely control the system and accept commands to perform malicious activities on the infected machine. It can also execute shell […] more…Exposed Twilio SDK Abused for Malvertising Attack
Cloud communications platform as a service (CPaaS) company Twilio this week disclosed a security incident that resulted in hackers uploading a modified version of the TaskRouter JS SDK to its site. The incident happened on July 19 and was discovered several hours later, with the modified file being replaced within an hour. read more more…Speed or Security? We Say Speed AND Security
“Security software slows down my PC.” We often hear this sentiment when users talk about malware protection. While people recognize the value of computer security, most get frustrated if the software bogs down their device. I mean, I myself become frustrated when I’m trying to crunch numbers and I’m suddenly greeted with an hourglass! While […] more…Ignite 2020: Microsoft Teams gets Rooms Premium, DataFlex, new frontline worker features
Microsoft, which has seen the use of its Teams software rise amid the COVID-19 outbreak, has added new ways to manage Teams Rooms video conferencing devices, a move it says will help businesses connect office-based staffers with colleagues working remotely because of the pandemic. “The workplace of the future will accommodate hybrid scenarios in which […] more…More information
- BSidesLV: What’s on the agenda in Las Vegas
- Microsoft Exchange Server CVE-2016-0031 Spoofing Vulnerability
- Understanding Looming Threats and the Need to Hunt With Anonymity
- Her website was hacked away; here’s how she got it back
- 300,000 Systems Vulnerable to New Loop DoS Attack
- Mitigate the Adobe Reader/Acrobat XI Vulnerability
- China Says Push for Companies’ Encryption Keys Follows U.S. Lead
- Australian online voting system may have FREAK bug
- How F-Secure wants Sense to act as IoT watchdog for all your connected devices
- Google CEO on innovation: ‘We’re at 1% of what’s possible’