New Database Botnet Leveraged for Bitcoin Mining

An organized group of cybercriminals is currently targeting database services in a new botnet build-up that’s being leveraged for cryptocurrency mining, among other more traditional botnet attack patterns. Discovered by researchers with GuardiCore Labs, the so-called Hex-Men attacks have been slowly evolving since March and remain ongoing. The researchers say there are three main variants […]

Another Cyberattack Spotted Targeting Mideast Critical Infrastructure Organizations

Damaging attacks from second and third-tier nation-state threat actors – especially in the Middle East – could become more of a pressing issue for enterprises next year if a couple of recent incidents are any indication. Days after FireEye reported a recent attack where a likely nation-state actor disrupted operations at a critical infrastructure facility in the […]

Loapi malware capable of destroying Android phones

A new strain of malware targeting Android phones is capable of performing a plethora of malicious activities, from mining cryptocurrencies to launching DDoS attacks — and so many more malicious functions in between those extremes that it can cause the battery to bulge and destroy the phone within two days. This malware, dubbed Loapi, has […]

Return of Necurs botnet brings new ransomware threat

The Necurs botnet has returned to the top ten most prevalent malware during November 2017, as cybercriminals used it to distribute a new form of ransomware, according to Check Point. “The re-emergence of the Necurs botnet highlights how malware that may seem to be fading away doesn’t always disappear or become any less of a threat. Despite […]

Microsoft Issues Emergency Patch for ‘Critical’ Flaw in Windows Security

Microsoft recently issued an emergency patch for its major Windows malware protection tool that fixes a critical vulnerability discovered by the UK’s National Cyber Security Centre (NCSC), an arm of the Government Communications Headquarters (GCHQ) intelligence agency. The remote code execution vulnerability (CVE-2017-11937) in the Microsoft Malware Protection Engine would allow an attacker to gain […]

Over 1 million monthly spam emails spreading new Adwind RAT variants

The holidays are busy times for most people – and that includes cyber criminals who are busy sending millions of spam emails carrying newly repackaged Adwind remote access Trojan (RAT) variants meant to avoid detection. Adwind is a cross-platform RAT that has also been called AlienSpy, Frutas, Unrecom, Sockrat, JSocket, and jRAT. This multifunctional RAT […]

Conficker: The Worm That Won’t Die

The Conficker worm has become the malware that just won’t die. More than nine years after it was first spotted in 2008, the worm continues to be detected by anti-malware systems with enough regularity to suggest that it remains a potent threat for organizations, especially those in the manufacturing, healthcare, and government sectors. In a report released […]

Security Leaders Must Adjust Cybersecurity Budgets to Effectively Address 2018 Cyber Threats

The natural trend in the cybersecurity industry is that spending money means you’re more secure; however, this isn’t always the case. While cybersecurity budgets will continue to increase in 2018, they will be increasingly focused on areas that will be most effective. We have observed over recent years most exploits lead back to unpatched or […]

FBI, Europol, Microsoft, ESET Team Up, Dismantle One of World’s Largest Malware Operations

A pervasive and long-running malware operation that used more than 460 different botnets and infected more than 1.1 million computers a month has been derailed in a yearlong operation by global law enforcement and cybersecurity vendors. The FBI, Europol’s European Cybercrime Center, Joint Cybercrime Action Task Force (J-CAT), Eurojust, and Germany’s Luneburg Central Criminal Investigation […]

Dark cloud: the threat of ransomware

Read Lisa R. Lifshitz’s article about why ransomware is a dangerous threat for businesses on Canadian Lawyer : Longtime readers of this column know that I am a huge fan of all things cloud — until now. Ramsomware is a type of malware that encrypts a target’s software files, forcing them to pay a “ransom” for […]