Menu

Blog

Archive for the ‘cybercrime/malcode’ category: Page 137

Nov 21, 2019

New Roboto botnet emerges targeting Linux servers running Webmin

Posted by in category: cybercrime/malcode

The botnet’s main function is the ability to conduct DDoS attacks, a feature it has not used yet.

Nov 21, 2019

Google really wants you to hack the Pixel’s Titan M security chip

Posted by in categories: cybercrime/malcode, encryption, mobile phones

Google has increased the maximum prize for its Android bug bounty program to $1 million for anyone who can compromise the Titan M security chip found in its Pixel phones. The top prize is for a “full chain remote code execution exploit with persistence” of the dedicated security chip. On top of that, there’s an additional 50 percent bonus if a security researcher is able to find an exploit on specific developer preview versions of Android, resulting in a potential prize of $1.5 million. The new rewards take effect starting today.

Introduced with 2018’s Pixel 3, Google’s Titan M security chip cordons off your smartphone’s most sensitive data from its main processor to protect against certain attacks. Google says the chip offers “on-device protection for login credentials, disk encryption, app data, and the integrity of the operating system.” Since its introduction, the chip has also been integrated with Android’s security key functionality where it’s used to store a person’s FIDO credentials. Suffice it to say, the integrity of the Titan M is an important element for the security of recent Pixel devices.

Nov 14, 2019

Malware attacks on hospitals are rising fast, and the problem is about to get a lot worse

Posted by in categories: biotech/medical, cybercrime/malcode

The healthcare industry stores some of the sensitive personal information there can be about people: hackers know this and are looking to exploit what they view as an easy target.

Nov 14, 2019

This unusual new ransomware is going after servers

Posted by in category: cybercrime/malcode

PureLocker ransomware appears to have links to some of the most prolific cyber-criminal operations active in the world today.

Nov 11, 2019

New Platform Aims To Help Protect Power Grid From Cyber Threats

Posted by in category: cybercrime/malcode

Fortress Information Security and AEP launched the Asset to Vendor (A2V) Network to help electric utility providers collaborate for more effective cybersecurity.

Nov 10, 2019

Google’s cybersecurity project ‘Chronicle’ imploding

Posted by in category: cybercrime/malcode

San Francisco, Nov 10 (IANS) Google’s cybersecurity project named “Chronicle” is imploding in trouble and some employees feel its management “abandoned and betrayed” the original vision, media reports said.

Chronicle’’s CEO and Chief Security Officer have already left and the Chief Technology Officer is leaving later this month while other key officials are eyeing an exit, according to the Motherboard.

In June this year, Chronicle lost its status as an independent entity when it formally joined Google to become part of its Cloud security offerings.

Nov 10, 2019

Major ASP.NET hosting provider infected by ransomware

Posted by in category: cybercrime/malcode

SmarterASP.NET, a company with more than 440,000 customers, said it’s been hit by ransomware over the weekend.

Nov 7, 2019

Newly Discovered Android Malware Can Survive A Factory Reset

Posted by in categories: cybercrime/malcode, mobile phones

Malware on our smartphones isn’t new, and while there are ways to remove them, in some instances where it is particularly severe, the only way to deal with malware would be to factory reset your phone back to the way it was when it was new. Unfortunately, it seems that there is a new Android malware making its rounds that makes it impossible to remove, even with a factory reset.

Dubbed xHelper, this malware isn’t so much about stealing your phone’s information or sensitive details, but rather, it is designed to continuously serve up popup ads, in which presumably that is how its creators are making money off it. There is one particularly dangerous feature of the malware, which according to ZDNet, would see the malware download and install apps on your behalf.

As if that wasn’t bad enough, as we said, the malware cannot be uninstalled or removed even if you factory reset your phone. According to security companies like Symantec and Malwarebytes, they believe that the reason why this app is so persistent is because of a system app that might have been compromised.

Nov 6, 2019

Kaspersky identifies mysterious APT mentioned in 2017 Shadow Brokers leak

Posted by in categories: cybercrime/malcode, privacy

The NSA had superior insight into foreign nation-state hacking operations than many cyber-security vendors.

Nov 6, 2019

Tipped off by an NSA breach, researchers discover new APT hacking group

Posted by in categories: cybercrime/malcode, privacy

DarkUniverse went undetected for at least 8 years. The NSA finally outed it.