Uber bezahlte Hacker, um Datendiebstahl bei 57 Millionen Betroffenen zu vertuschen

Credit to Author: Jörg Schindler| Date: Wed, 22 Nov 2017 12:00:30 +0000

Das US-Unternehmen Uber erlitt im Oktober 2016 einen massiven Datendiebstahl. 57 Millionen Fahrer- und Kunden-Konten waren davon betroffen. Uber hielt diesen Datenverlust nicht nur gegenüber den Betroffenen geheim, sondern bezahlte den Hackern 100.000 US-Dollar, damit diese die Daten löschen und darüber schweigen sollten. Die gehackten Daten umfassen Emailadressen und Telefonnummer der Kunden und persönliche Informationen [&#8230;]<img alt=”” border=”0″ src=”https://pixel.wp.com/b.gif?host=news.sophos.com&#038;blog=834173&#038;post=44229&#038;subd=sophos&#038;ref=&#038;feed=1″ width=”1″ height=”1″ /><img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/RXRFuTnd9qI” height=”1″ width=”1″ alt=””/>

Read more

Ransomware bleibt ein Problem – nicht nur für Windows

Credit to Author: Jörg Schindler| Date: Fri, 17 Nov 2017 11:17:03 +0000

Ransomware hat Unternehmen und Privatanwender in diesem Jahr auffällig zugesetzt. SophosLabs kommt nach seiner Analyse von Daten aus April bis Oktober 2017 zur Prognose, dass auch das nächste Jahr von Ransomware und Ransomware as a Service (RaaS) inkl. Do-it-yourself-Bausätzen geprägt sein wird. Neben Windows müssen sich zukünftig allerdings auch Linux, Mac und Android User wappnen. [&#8230;]<img alt=”” border=”0″ src=”https://pixel.wp.com/b.gif?host=news.sophos.com&#038;blog=834173&#038;post=44132&#038;subd=sophos&#038;ref=&#038;feed=1″ width=”1″ height=”1″ /><img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/bn9hDukwQNM” height=”1″ width=”1″ alt=””/>

Read more

Napoleon: a new version of Blind ransomware

Credit to Author: Malwarebytes Labs| Date: Fri, 08 Dec 2017 17:00:15 +0000

The ransomware previously known as Blind has been spotted recently with a .napoleon extension and a bug fix that means files can no longer be decrypted by victims. In this post, we’ll analyze the sample for its structure, behavior, and distribution method.

Categories:

Tags:

(Read more…)

The post Napoleon: a new version of Blind ransomware appeared first on Malwarebytes Labs.

Read more

Quick Heal Total Security receives BEST+++ certification from AVLab in Fileless Malware Protection Test

Credit to Author: Rajib Singha| Date: Thu, 07 Dec 2017 10:14:28 +0000

AVLab is an independent organization that conducts tests on security software for corporate networks and individual user devices. These tests are conducted by using malicious software, tools, and bypassing security techniques that are used in real cyberattacks. In October 2017, AVLab conducted a Fileless Malware Protection Test. In this test,…

Read more

An emerging trend of DDE based Office malware – an analysis by Quick Heal Security Labs

Credit to Author: Aniruddha Dolas| Date: Wed, 06 Dec 2017 09:27:30 +0000

For the past few years, we have been seeing macro-based attacks through Object Linking Embedding (OLE)/Microsoft Office files. But, presently, attackers are using a different technique to spread malware through Office files – using a new attack vector called ‘Dynamic Data Exchange (DDE)’. DDE is an authorized Microsoft Office feature that provides several methods for transferring data between applications. Once the communication protocol is established, it doesn’t require user interactions…

Read more

IcedID – a new sophisticated banking Trojan: a technical analysis by Quick Heal Security Labs

Credit to Author: Bajrang Mane| Date: Wed, 29 Nov 2017 13:23:03 +0000

IcedID is a new player in the banking Trojan family. It has a modular architecture and capable of stealing banking credentials of the user by performing a man-in-the-middle attack (MITM). IcedID sets up a local proxy and redirects all Internet traffic through it. Additionally, it can download and execute components…

Read more

Persistent drive-by cryptomining coming to a browser near you

Credit to Author: Jérôme Segura| Date: Wed, 29 Nov 2017 18:00:10 +0000

If you think closing your browser window to leave a site that runs a cryptominer will stop the mining process, think again. Persistent drive-by cryptomining has arrived.

Categories:

Tags:

(Read more…)

The post Persistent drive-by cryptomining coming to a browser near you appeared first on Malwarebytes Labs.

Read more

Technical Analysis of ‘IcedID’: a new sophisticated banking Trojan – an analysis by Quick Heal Security Labs

Credit to Author: Bajrang Mane| Date: Wed, 29 Nov 2017 13:23:03 +0000

IcedID is a new player in the banking Trojan family. It has a modular architecture and capable of stealing banking credentials of the user by performing a man-in-the-middle attack (MITM). IcedID sets up a local proxy and redirects all Internet traffic through it. Additionally, it can download and execute components…

Read more

Beware! 12.5 million emails hiding a ransomware have been let loose by Necurs botnet

Credit to Author: Rajib Singha| Date: Tue, 28 Nov 2017 09:40:57 +0000

If you weren’t careful with your incoming emails, then it’s time you should. Attackers have released 12.5 million emails hiding a ransomware called the Scarab malware. And Necurs botnet, the world’s largest email spam botnet, is being used in this attack. First, what is a botnet? A group of computers…

Read more

Beware! 12.5 million emails hiding ransomware have been let loose by Necurs botnet

Credit to Author: Rajib Singha| Date: Tue, 28 Nov 2017 09:40:57 +0000

Necurs BotnetIf you weren’t careful with your incoming emails, then it’s time you should. Attackers have released 12.5 million emails hiding a ransomware called the Scarab malware. And Necurs botnet, the world’s largest email spam botnet, is being used in this attack. First, what is a botnet? A group of computers…

The post Beware! 12.5 million emails hiding ransomware have been let loose by Necurs botnet appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read more