cyberattack, cybersecurity, defense, infrastructure, malware, Security technology, zeroday
Good article on the Triton malware which targets industrial control systems. Powered by WPeMatico
Category: malware
Auto Added by WPeMatico
cybersecurity, hacking, insurance, malware, ransomware, russia, Security technology, war
This will complicate things: To complicate matters, having cyber insurance might not cover everyone’s losses. Zurich American Insurance Company refused to pay out a $100 million claim from Mondelez, saying that since the U.S. and other governments labeled the NotPetya attack as an action by the Russian military their claim was excluded under the “hostile … Read More “Cybersecurity Insurance Not Paying for NotPetya Losses” »
concealment, google, malware, phones, Security technology
This is clever: Malicious apps hosted in the Google Play market are trying a clever trick to avoid detection — they monitor the motion-sensor input of an infected device before installing a powerful banking trojan to make sure it doesn’t load on emulators researchers use to detect attacks. The thinking behind the monitoring is that … Read More “Clever Smartphone Malware Concealment Technique” »
cybersecurity, datadestruction, infrastructure, malware, Security technology
A new variant of the Shamoon malware has destroyed significant amounts of data at a UAE “heavy engineering company” and the Italian oil and gas contractor Saipem. Shamoon is the Iranian malware that was targeted against the Saudi Arabian oil company, Saudi Aramco, in 2012 and 2016. We have no idea if this new variant … Read More “New Shamoon Variant” »
banking, cybercrime, hacking, hardware, malware, Security technology, theft, usb
Kaspersky is reporting on a series of bank hacks — called DarkVishnya — perpetrated through malicious hardware being surreptitiously installed into the target network: In 2017-2018, Kaspersky Lab specialists were invited to research a series of cybertheft incidents. Each attack had a common springboard: an unknown device directly connected to the company’s local network. In … Read More “Banks Attacked through Malicious Hardware Connected to the Local Network” »
malware, opensource, patching, Security technology, socialengineering
The module “event-stream” was infected with malware by an anonymous someone who became an admin on the project. Cory Doctorow points out that this is a clever new attack vector: Many open source projects attain a level of “maturity” where no one really needs any new features and there aren’t a lot of new bugs … Read More “Distributing Malware By Becoming an Admin on an Open-Source Project” »
attribution, control, iran, malware, russia, saudiarabia, Security technology
The conventional story is that Iran targeted Saudi Arabia with Triton in 2017. New research from FireEye indicates that it might have been Russia. I don’t know. FireEye likes to attribute all sorts of things to Russia, but the evidence here looks pretty good. Powered by WPeMatico
espionage, malware, Security technology, spyware
Citizen Lab has published a new report about the Pegasus spyware. From a ZDNet article: The malware, known as Pegasus (or Trident), was created by Israeli cyber-security firm NSO Group and has been around for at least three years — when it was first detailed in a report over the summer of 2016. The malware … Read More “Pegasus Spyware Used in 45 Countries” »
cyberattack, cyberweapons, malware, russia, Security technology
Andy Greenberg wrote a fascinating account of the Russian NotPetya worm, with an emphasis on its effects on the company Maersk. BoingBoing post. Powered by WPeMatico
malware, passwords, Security technology
Last year, researchers wrote about a new Windows code injection technique called PROPagate. Last week, it was first seen in malware: This technique abuses the SetWindowsSubclass function — a process used to install or update subclass windows running on the system — and can be used to modify the properties of windows running in the … Read More “PROPagate Code Injection Seen in the Wild” »