Advanced Malware – WindowsTechs.com

Real Security Concerns Are Scarier Than Doomsday Predictions

Posted on June 6, 2022 by Jonathan Reed

The metaverse, artificial intelligence (AI) run amok, the singularity … many far-out situations have become a dinner-table conversation. Will AI take over the world? Will you one day have a computer chip in your brain? These science fiction ideas may never come to fruition, but some do point to existing security risks. While nobody can […]

The post Real Security Concerns Are Scarier Than Doomsday Predictions appeared first on Security Intelligence.

Continue reading Real Security Concerns Are Scarier Than Doomsday Predictions→

TrickBot Bolsters Layered Defenses to Prevent Injection Research

Posted on January 24, 2022 by Michael Gal

This post was written with contributions from IBM X-Force’s Limor Kessem and Charlotte Hammond. The cyber crime gang that operates the TrickBot Trojan, as well as other malware and ransomware attacks, has been escalating activity. As part of that escalation, malware injections have been fitted with added protection to keep researchers out and get through […]

The post TrickBot Bolsters Layered Defenses to Prevent Injection Research appeared first on Security Intelligence.

Continue reading TrickBot Bolsters Layered Defenses to Prevent Injection Research→

X-Force Threat Intelligence: Monthly Malware Roundup

Posted on December 1, 2021 by Limor Kessem

Today’s reality means that organizations need to be constantly vigilant against security breaches. Having a robust incident response plan in place is vital. IBM Security X-Force is a team dedicated to delivering the latest threat intelligence, research and analysis reports that help you manage risk in your organization. This monthly malware roundup offers a summary […]

The post X-Force Threat Intelligence: Monthly Malware Roundup appeared first on Security Intelligence.

Continue reading X-Force Threat Intelligence: Monthly Malware Roundup→

Cryptominers Snuck Logic Bomb Into Python Packages

Posted on September 13, 2021 by Mike Elgan

Malware can show up where you least expect it. Researchers discovered a logic bomb attack in the Python Package Index (PyPI) repository, which is code repository for Python developers and part of the software supply chain. Attackers aimed to get honest software developers to include the bombs in their applications by accident. The researchers found […]

The post Cryptominers Snuck Logic Bomb Into Python Packages appeared first on Security Intelligence.

Continue reading Cryptominers Snuck Logic Bomb Into Python Packages→

Fighting Cyber Threats With Open-Source Tools and Open Standards

Posted on September 3, 2021 by Aviv Ron

Detecting cyber threats is usually the first critical step in the mitigation of cyber attacks. Common means to achieve this goal are rules or analytics that track network and system behaviors and raise alerts when potentially malicious attacks are identified. Once a potential threat is detected, the staff of the security operations center (SOC) investigates […]

The post Fighting Cyber Threats With Open-Source Tools and Open Standards appeared first on Security Intelligence.

Continue reading Fighting Cyber Threats With Open-Source Tools and Open Standards→

What Has Changed Since the 2017 WannaCry Ransomware Attack?

Posted on September 1, 2021 by Jennifer Gregory

The cybersecurity world is still feeling the effects of the 2017 WannaCry ransomware attack today. While the majority of the damage occurred in the weeks after May 12, 2017, WannaCry ransomware attacks actually increased 53% from January 2021 to March 2021. While researching my in-depth article WannaCry: How the Widespread Ransomware Changed Cybersecurity, I learned […]

The post What Has Changed Since the 2017 WannaCry Ransomware Attack? appeared first on Security Intelligence.

Continue reading What Has Changed Since the 2017 WannaCry Ransomware Attack?→

Cyberattacks Use Office 365 to Target Supply Chain

Posted on August 31, 2021 by David Bisson

Malicious actors have a history of trying to compromise users’ Office 365 accounts. By doing so, they can tunnel into a network and use their access to steal sensitive information. But they need not stop there. They can also single out other entities with which the target does business for supply chain cyberattacks. Office-Related Cyberattacks […]

The post Cyberattacks Use Office 365 to Target Supply Chain appeared first on Security Intelligence.

Continue reading Cyberattacks Use Office 365 to Target Supply Chain→

RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation

Posted on July 12, 2021 by Melissa Frydrych

In a recent collaboration to investigate a rise in malware infections featuring a commercial remote access trojan (RAT), IBM Security X-Force and Cipher Tech Solutions (CT), a defense and intelligence security firm, investigated malicious activity that spiked in the first quarter of 2021. With over 1,300 malware samples collected, the teams analyzed the delivery of […]

The post RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation appeared first on Security Intelligence.

Continue reading RoboSki and Global Recovery: Automation to Combat Evolving Obfuscation→

A Fly on ShellBot’s Wall: The Risk of Publicly Available Cryptocurrency Miners

Posted on June 29, 2021 by Golo Mühr

IBM Security X-Force researchers studied the botnet activity of a malware variant that is used by cyber crime groups to illegally mine cryptocurrency. Examining two ShellBot botnets that appeared in attacks honeypots caught, the X-Force team was able to infect its own devices and become part of the live botnets, thereby gaining insight into how […]

The post A Fly on ShellBot’s Wall: The Risk of Publicly Available Cryptocurrency Miners appeared first on Security Intelligence.

Continue reading A Fly on ShellBot’s Wall: The Risk of Publicly Available Cryptocurrency Miners→

Ursnif Leverages Cerberus to Automate Fraudulent Bank Transfers in Italy

Posted on June 23, 2021 by Itzik Chimino

Contributed to this research: Segev Fogel, Amir Gendler and Nethanella Messer. IBM Trusteer researchers continually monitor the evolution and attack tactics in the banking sector. In a recent analysis, our team found that an Ursnif (aka Gozi) banking Trojan variant is being used in the wild to target online banking users in Italy with […]

The post Ursnif Leverages Cerberus to Automate Fraudulent Bank Transfers in Italy appeared first on Security Intelligence.

Continue reading Ursnif Leverages Cerberus to Automate Fraudulent Bank Transfers in Italy→