Malware

Pierluigi Paganini December 26, 2019
Ryuk Ransomware evolution avoid encrypting Linux folders

Experts spotted a new strain of the Ryuk Ransomware that was developed to avoid encrypting folders commonly seen in *NIX operating systems. Recently the City of New Orleans was the victim of ransomware attack, researchers from the BleepingComputer community revealed that the malware that infected the City’s systems was the Ryuk Ransomware. The experts found on […]

Pierluigi Paganini December 25, 2019
New Mozi P2P Botnet targets Netgear, D-Link, Huawei routers

A new Mozi P2P botnet is actively targeting Netgear, D-Link, and Huawei routers by probing for weak Telnet passwords to compromise them. Security experts from 360 Netlab spotted a new Mozi P2P botnet that is actively targeting Netgear, D-Link, and Huawei routers by probing for weak Telnet passwords to compromise them. According to the researchers, […]

Pierluigi Paganini December 25, 2019
Entercom Radio Network hit by a second cyber attack in a few months

A new cyber attack hit the radio network Entercom, this is the second time the company has suffered a similar security incident in a few months. A cyber attack hit the radio network Entercom, the incident has impacted the back-office functions and in some cases, the stations were apparently forced to run recorded programs. Entercom […]

Pierluigi Paganini December 25, 2019
Actors behind Maze ransomware release files stolen from City of Pensacola

Maze ransomware operators have released 2GB of files that were allegedly stolen from the City of Pensacola during the recent attack. On December 7, 2019, the city of Pensacola has been hit by a ransomware attack, the city was forced to disconnect most of its systems following the attack that impacted emails, telephone lines, and […]

Pierluigi Paganini December 24, 2019
FBI flash alert warns of LockerGoga and MegaCortex Ransomware attacks

The FBI has issued a warning to the private industry of cyber attacks involving the LockerGoga and MegaCortex Ransomware. The FBI is warning the private industry of cyber attacks involving the LockerGoga and MegaCortex Ransomware. “In an FBI Flash Alert marked as TLP:Amber and seen by BleepingComputer, the FBI is warning the private industry regarding […]

Pierluigi Paganini December 23, 2019
Members of GozNym gang sentenced for stealing $100 Million

U.S. Justice Department announced that three members of the cybercrime group behind the GozNym banking Trojan have been sentenced to prison. U.S. Justice Department announced that three members of the cybercrime group behind the GozNym banking Trojan have been sentenced to prison. The crooks infected more than 4,000 victim computers globally with GozNym banking Trojan […]

Pierluigi Paganini December 23, 2019
Champagne Bakery Cafe and Islands burger chain disclose payment card breaches

The news of two new payment card breaches made the headlines, the victims are the Islands restaurant chain and Champagne French Bakery Cafe. The new restaurant chains with locations across the U.S. disclosed payment card breaches, in both cases, attackers used PoS malware to capture card data stored in the magnetic stripe. Exposed data includes […]

Pierluigi Paganini December 22, 2019
Experts warn of Greta Thunberg-themed Emotet malware campaign

Experts spotted a massive global Emotet malware campaign that uses as lure documents the Swedish climate-change activist Greta Thunberg. Crooks always attempt to monetize the media interest on specific topics, and the recent Greta Thunberg-themed Emotet campaign confirms it. Experts from the Proofpoint Threat Insight team have spotted a malspam campaign delivering the Emotet malware […]

Pierluigi Paganini December 22, 2019
Security Affairs newsletter Round 245

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs From iPhone to NT AUTHORITYSYSTEM – exploit ‘Printconfig dll with a real-world example Iran announced to have foiled a second cyber-attack in a week Largest hospital system in New Jersey was hit by ransomware attack A thief stole […]

Pierluigi Paganini December 20, 2019
Unveiling JsOutProx: A New Enterprise Grade Implant

Experts at Yoroi/Cybaze ZLab spotted a new sophisticated malware implant dubbed JsOutProx that seems to be unrelated to mainstream cyber weapons. Introduction During our threat intelligence source monitoring operations, we spotted a new sophisticated malware implant, dubbed JsOutProx, that seems to be unrelated to mainstream cyber weapons. In fact, the recovered sample raised many interrogatives […]