Triout Android Spyware Framework Makes a Comeback, Abusing App with 50 Million Downloads

In August 2018, Bitdefender researchers stumbled across an Android malware framework, dubbed Triout, which packed massive surveillance capabilities. Bundled with a legitimate application ripped from the official Google Play marketplace, the spyware fra… Continue reading Triout Android Spyware Framework Makes a Comeback, Abusing App with 50 Million Downloads

IoT Report: Major Flaws in Guardzilla Cameras Allow Remote Hijack of the Security Device

Vulnerabilities in indoor security camera allows remote compromise and device takeover The commodification of IoT devices has paved the way to the smart home. Interconnected appliances, intelligent assistants and smart home surveillance are just some a… Continue reading IoT Report: Major Flaws in Guardzilla Cameras Allow Remote Hijack of the Security Device

Bitdefender GandCrab decryptor for Syrian users now available

We’re happy to announce the release of a new decryptor for victims of GandCrab ransomware. The tool can only be used by a limited pool of victims located in Syria, and works for GandCrab ransomware versions 1 through 5. At the tool’s core i… Continue reading Bitdefender GandCrab decryptor for Syrian users now available

Hide and Seek IoT Botnet Learns New Tricks: Uses ADB over Internet to Exploit Thousands of Android Devices

Hide and Seek, a new IoT botnet discovered by our honeypot system in early January, has quickly gained notoriety after amassing over 90,000 devices in a large botnet in a matter of days. While the first variant performed brute force attacks over the Te… Continue reading Hide and Seek IoT Botnet Learns New Tricks: Uses ADB over Internet to Exploit Thousands of Android Devices

Six Years and Counting: Inside the Complex Zacinlo Ad Fraud Operation

For more than a decade, adware has helped software creators earn money while bringing free applications to the masses. Headliner games and applications have become widely available to computer and mobile users the world over, with no financial strings … Continue reading Six Years and Counting: Inside the Complex Zacinlo Ad Fraud Operation

Hide and Seek IoT Botnet resurfaces with new tricks, persistence

On April 30, Bitdefender researchers became aware of a new version of the Hide and Seek bot we documented earlier this year. The botnet, the world’s first to communicate via a custom-built peer to peer protocol, has now also become the first to g… Continue reading Hide and Seek IoT Botnet resurfaces with new tricks, persistence

RadRAT: An all-in-one toolkit for complex espionage ops

Around February this year, we came across a piece of malware that had previously gone unnoticed. Buried in the malware zoo, the threat seems to have been operational since at least 2015, undocumented by the research community. Our interest was sti… Continue reading RadRAT: An all-in-one toolkit for complex espionage ops

Bitdefender, Europol, Romanian Police, DIICOT team up for GandCrab removal tool

Ransomware has become one of the most profitable cybercrime verticals in recent years. Complex infection mechanisms and highly profitable affiliation schemes brought operators more than $1 billion in 2016. GandCrab, the latest family of ransomware,&#16… Continue reading Bitdefender, Europol, Romanian Police, DIICOT team up for GandCrab removal tool

Operation PZChao: a possible return of the Iron Tiger APT

More than 30 years after the end of the Cold War, digital infrastructures worldwide have become strategic national fronts with the same importance as the geographical frontiers of air, land, sea and space. To ensure viability in this fifth domain, cybe… Continue reading Operation PZChao: a possible return of the Iron Tiger APT

New Hide ‘N Seek IoT Botnet using custom-built Peer-to-Peer communication spotted in the wild

Bitdefender researchers have uncovered an emerging botnet that uses advanced communication techniques to exploit victims and build its infrastructure. The bot, dubbed HNS, was intercepted by our IoT honeypot system following a credentials dictionary at… Continue reading New Hide ‘N Seek IoT Botnet using custom-built Peer-to-Peer communication spotted in the wild