Articles about Malware

As email security solutions focus on detecting malware, cybercriminals are now adapting their attacks, exposing organizations to more malware-less assaults such as CEO fraud.

The report by intelligence-led security company FireEye is based on analysis of a sample set of over half-a-billion emails from the first half of 2018. It finds only 32 percent of email traffic seen was considered 'clean' and actually delivered to an inbox. The report also finds that one in every 101 emails had malicious intent.

Continue reading →

A highly popular anti-adware tool in the Mac App Store "surreptitiously steals your browsing history", alleges a security researcher. "All your data are belong to China!", as he puts it.

Patrick Wardle conducted research into Adware Doctor -- one of the most popular paid-for apps in the App Store -- after concerns were raised by another security researcher. His research "uncovered blatant violations of user privacy and complete disregard of Apple's App Store Guidelines", including the theft and sharing of browsing history with a Chinese server.

Continue reading →

Since the beginning of 2017, the number of remote access Trojan (RAT) files found among the malware distributed by botnets has almost doubled, according to a new report.

The botnet activity report from Kaspersky Lab analyzed more than 150 malware families and their modifications circulating through 60,000 botnets around the world.

Continue reading →

The first half of 2018 has seen a 94 percent rise in fileless malware attacks according to the latest Enterprise Risk Index Report from endpoint security company SentinelOne.

It also finds that PowerShell attacks jumped to a record of 5.2 attacks per 1000 endpoints, compared to 2.5 in May. Ransomware attacks remain popular too, ranging from 5.6 to 14.4 attacks per 1000 endpoints.

Continue reading →

Threat intelligence specialist Lastline produces regular reports on the global cyberthreat landscape.

Its latest study looks at the telecoms industry and how the threats it faces differ from those in the wider world. Among the findings are that the industry sees a higher percentage of attacks (one in 10) exhibiting advanced threat capabilities, which is greater than the global standard of one in 12.

Continue reading →

Researchers at DDoS protection specialist Radware have uncovered an attack aimed at Brazilian bank customers that seeks to steal credentials via a compromised router.

It employs malware that targets DLink DSL modem routers using exploits dating back to 2015. A malicious agent attempts to modify the DNS server settings in the routers of Brazilian residents, redirecting all their DNS requests through a malicious server.

Continue reading →

A new report from EnigmaSoft -- makers of the SpyHunter anti-malware product -- reveals the US cities with the highest rates of malware infection.

Systems in Atlanta, Orlando, and Denver are most likely to be infected, with Louisville, Wichita, and Anchorage having the lowest infection rates.

Continue reading →

Over 140 apps on the Google Play store have been discovered to contain malicious Windows executable files.

Researchers at Palo Alto Networks found that among the infected apps, several had more than 1,000 installations and carried 4-star ratings.

Continue reading →

Malwarebytes is one of the better tools for keeping your PC safe from the many threats you can encounter on the web, and today the company introduces a browser extension for both Firefox and Chrome.

Called simply, Malwarebytes Browser Extension (BETA) it blocks malicious websites and filters out unwanted content, which the company says results in "up to three times faster webpage load times".

Continue reading →

Three Arch Linux packages have been pulled from AUR (Arch User Repository) after they were discovered to contain malware. The PDF viewer acroread and two other packages that are yet to be named were taken over by a malicious user after they were abandoned by their original authors.

A user by the name of xeactor took ownership of acroread and tweaked the source code of the package, lacing it with malware. In this particular instance there were no major consequences, but it highlights the security issues associated with user-submitted software.

Continue reading →

Even if you’re not a soccer/football fan, it probably hasn't escaped your notice that there's a World Cup going on in Russia at the moment.

We expect big sporting events to be exploited to launch phishing and malware campaigns but researchers at Enigma Software have spotted an interesting new phenomenon -- malware infections actually drop on match days.

Continue reading →

Getting hit by a ransomware attack is bad enough; it means that your files have been encrypted and you'll be asked to pay a fee in a cryptocurrency such as Bitcoin or Ethereum to unlock them. The problem is that paying the ransom is in no way a guarantee that your files will be decrypted -- the ransomware was created by criminals, after all.

If you've been struck by the Thanatos ransomware, however, there's good news from Cisco Talos. The company has analyzed the malware and developed a free decryption tool that will enable you to get your files back without having to part with any money.

Continue reading →

Researchers at RiskIQ have uncovered a scam app that seeks to steal information and launches advert clicking to make money for the scammers.

The app is advertised as a battery saver. The twist here is that though it will actually do what it says and cut battery use, it does a lot of nasty stuff too.

Continue reading →

Amazon’s Fire TV products are very popular with Kodi users, because it’s easy to install the media center software on it, along with any streaming add-ons.

Users of Kodi boxes are used to hearing of potential dangers -- some threats of which need to be taken with a pinch of salt -- but there’s a new malware variant that’s infecting Amazon Fire TV and Fire TV Stick devices globally, and which could well be on your device now.

Continue reading →

Currency miners continue to top the malware charts according to Check Point Software's latest Global Threat Index.

May 2018 marks the fifth consecutive month where cryptomining malware has dominated Check Point's index. The Coinhive cryptominer impacted 22 percent of organizations globally during May -- up from 16 percent in April, an increase of nearly 50 percent.

Continue reading →