New Bundlore adware targets MacOS with updated Safari extensions

Credit to Author: Xinran Wu| Date: Thu, 18 Jun 2020 08:00:39 +0000

Browser add-ons are a common source of privacy and security concerns. While they are usually legitimate software products with real companies behind them, these plug-ins can also be used by unscrupulous software developers as a way to turn downloads of free software into a revenue stream&#8211;dropping browser add-ons that gather information from the user, inject [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/ToQR6l1YOJE” height=”1″ width=”1″ alt=””/>

Read more

Microsoft pushes fixes for 128 security bugs in June, 2020 Patch Tuesday

Credit to Author: SophosLabs Offensive Security| Date: Tue, 09 Jun 2020 17:01:17 +0000

In this month&#8217;s Patch Tuesday, a total of 128 security vulnerabilities have been patched in Microsoft products, a slight increase compared to the last few months. Only twelve of the vulnerabilities are rated &#8220;Critical.&#8221; None of the bugs have been found being exploited in the wild (yet). Preceding this month&#8217;s update was a fix for [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/02N0ToRkzv0″ height=”1″ width=”1″ alt=””/>

Read more

Kingminer escalates attack complexity for cryptomining

Credit to Author: Gabor Szappanos| Date: Tue, 09 Jun 2020 07:30:59 +0000

An opportunistic botnet that tries (not always successfully) to fly under the radar, Kingminer is nevertheless a persistent nuisance that delivers cryptocurrency miners as a payload. The botnet&#8217;s operators may be ambitious and capable, but they don’t appear to have endless resources, so they take advantage of any freely available solution to the problem of [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/7fkY6ghW07M” height=”1″ width=”1″ alt=””/>

Read more

Netwalker ransomware tools give insight into threat actor

Credit to Author: Gabor Szappanos| Date: Wed, 27 May 2020 15:02:36 +0000

A survey of attacker files reveals orchestration techniques &#38; preferred exploits<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/VIxDxjIG-F0″ height=”1″ width=”1″ alt=””/>

Read more

Ragnar Locker ransomware deploys virtual machine to dodge security

Credit to Author: Mark Loman| Date: Thu, 21 May 2020 11:00:01 +0000

A new ransomware attack method takes defense evasion to a new level—deploying as a full virtual machine on each targeted device to hide the ransomware from view. In a recently detected attack, Ragnar Locker ransomware was deployed inside an Oracle VirtualBox Windows XP virtual machine. The attack payload was a 122 MB installer with a 282 [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/LkOx9NWj1Zo” height=”1″ width=”1″ alt=””/>

Read more