Collaborate Disseminate
Trojanized firmware found in 141 low-cost Android devices, and checking whether Android apps send unencrypted data.
The post Trojanized Android firmware & how to check Android apps for unencrypted data appeared first on Security Boulevard.
Continue reading Trojanized Android firmware & how to check Android apps for unencrypted data
Facebook demands too much privilege, Kaspersky on cyberespionage in the Middle East, Symantec on malware returning to Google Play, and Sophos on Google’s insisting (at last) that device makers patch properly.
The post Disconcerting Android stories and … Continue reading Disconcerting Android stories and one bit of good news
Facebook demands too much privilege, Kaspersky on cyberespionage in the Middle East, Symantec on malware returning to Google Play, and Sophos on Google’s insisting (at last) that device makers patch properly.
The post Disconcerting Android stories and … Continue reading Disconcerting Android stories and one bit of good news
It’s been a busy few weeks in cybercrime news, justifying updates to a couple of cases we’ve been following closely at KrebsOnSecurity. In Ukraine, the alleged ringleader of the Avalanche malware spam botnet was arrested after eluding authorities in the wake of a global cybercrime crackdown there in 2016. Separately, a case that was hailed as a test of whether programmers can be held accountable for how customers use their product turned out poorly for 27-year-old programmer Taylor Huddleston, who was sentenced to almost three years in prison for making and marketing a complex spyware program. Continue reading Bot Roundup: Avalanche, Kronos, NanoCore
Catalin Cimpanu for Bleeping Computer: We May Soon See Malware Leveraging the Meltdown and Spectre Vulnerabilities “All evidence suggests most of these detections are security researchers playing with the PoC code, but experts won’t rule ou… Continue reading Meltdown/Spectre PoC samples
(1) Raj Samani, Chief Scientist at McAfee, describes an attempt to explore the motivations that drive ransomware gangs. Why ransomware? Let’s ask the bad guys Perhaps the most useful and interesting fact to emerge from these exchanges … Continue reading Ransomware updates
[Previous posted to the AVIEN blog.] Lawrence Abrams for Bleeping Computer: Tech Support Scammers Invade Spotify Forums to Rank in Search Engines Extract: “Over the past few months, Tech Support scammers have been using the Spotify forums to… Continue reading Tech Support Scams: using Spotify to boost SEO
Lawrence Abrams for Bleeping Computer: Tech Support Scammers Invade Spotify Forums to Rank in Search Engines Extract: “Over the past few months, Tech Support scammers have been using the Spotify forums to inject their phone numbers into the … Continue reading Tech Support Scams: leveraging Spotify for Google and Bing SEO
Adobe has released updates to fix at least 67 vulnerabilities in its Acrobat, Reader and Flash Player software. Separately, Microsoft today issued patches to plug 48 security holes in Windows and other Microsoft products. If you use Windows or Adobe products, it’s time once again to get your patches on.
More than two dozen of the vulnerabilities fixed in today’s Windows patch bundle address “critical” flaws that can be exploited by malware or miscreants to assume complete, remote control over a vulnerable PC with little or no help from the user. According to Microsoft, none of flaws in August’s Patch Tuesday are being actively exploited in the wild, although Bleeping Computer notes that three of the bugs were publicly detailed before today’s patch release. Continue reading Critical Security Fixes from Adobe, Microsoft
A couple weeks ago, two new Malware-as-a-Service (MaaS) offerings for the Mac became available. We take a closer look at these two offerings – a backdoor named MacSpy and a ransomware app named MacRansom.
Categories:
Malwarebytes news
Tags: anti-malw… Continue reading New Mac Malware-as-a-Service offerings