malware – SSL and internet security news

New Mobile Phone Forensics Tool

July 18, 2025 infossl

china, forensics, hacking, malware, privacy, Security technology, smartphones, Uncategorized

The Chinese have a new tool called Massistant. Massistant is the presumed successor to Chinese forensics tool, “MFSocket”, reported in 2019 and attributed to publicly traded cybersecurity company, Meiya Pico. The forensics tool works in tandem with a corresponding desktop software. Massistant gains access to device GPS location data, SMS messages, images, audio, contacts and … Read More “New Mobile Phone Forensics Tool” »

Ubuntu Disables Spectre/Meltdown Protections

July 2, 2025 infossl

cyberattack, malware, operating systems, Security technology, Uncategorized

A whole class of speculative execution attacks against CPUs were published in 2018. They seemed pretty catastrophic at the time. But the fixes were as well. Speculative execution was a way to speed up CPUs, and removing those enhancements resulted in significant performance drops. Now, people are rethinking the trade-off. Ubuntu has disabled some protections, … Read More “Ubuntu Disables Spectre/Meltdown Protections” »

Slopsquatting

April 15, 2025 infossl

AI, LLM, malware, Security technology, Uncategorized

As AI coding assistants invent nonexistent software libraries to download and use, enterprising attackers create and upload libraries with those names—laced with malware, of course. Powered by WPeMatico

Thousands of WordPress Websites Infected with Malware

March 10, 2025 infossl

backdoors, malware, Security technology, Uncategorized, web

The malware includes four separate backdoors: Creating four backdoors facilitates the attackers having multiple points of re-entry should one be detected and removed. A unique case we haven’t seen before. Which introduces another type of attack made possibly by abusing websites that don’t monitor 3rd party dependencies in the browser of their users. The four … Read More “Thousands of WordPress Websites Infected with Malware” »

Nearly 7% of Internet Traffic Is Malicious

July 31, 2024 infossl

denial of service, malware, Security technology, spam, Uncategorized, vulnerabilities

Cloudflare reports on the state of applications security. It claims that 6.8% of Internet traffic is malicious. And that CVEs are exploited as quickly as 22 minutes after proof-of-concepts are published. News articles. Powered by WPeMatico

The Justice Department Took Down the 911 S5 Botnet

June 7, 2024 infossl

botnets, courts, COVID-19, crime, cybercrime, malware, Security technology, Uncategorized

The US Justice Department has dismantled an enormous botnet: According to an indictment unsealed on May 24, from 2014 through July 2022, Wang and others are alleged to have created and disseminated malware to compromise and amass a network of millions of residential Windows computers worldwide. These devices were associated with more than 19 million … Read More “The Justice Department Took Down the 911 S5 Botnet” »

Backdoor in XZ Utils That Almost Happened

April 11, 2024 infossl

backdoors, cybersecurity, economics of security, hacking, linux, malware, open source, Security technology, social engineering, ssh, Uncategorized

Last week, the internet dodged a major nation-state attack that would have had catastrophic cybersecurity repercussions worldwide. It’s a catastrophe that didn’t happen, so it won’t get much attention—but it should. There’s an important moral to the story of the attack and its discovery: The security of the global internet depends on countless obscure pieces … Read More “Backdoor in XZ Utils That Almost Happened” »