Security

BlackRouter Ransomware Promoted as a RaaS by Iranian Developer

A ransomware called BlackRouter has been discovered being promoted as a Ransomware-as-a-Service on Telegram by an Iranian developer. This same actor previousl distributed another ransomware called Blackheart and promotes other infections such as a RAT. [...]

Date: 

Thursday, January 17, 2019 - 17:48

Category: 

Rocke's Cryptominers Kills Competition, Uninstall Cloud Security Products

Analysis of new malware samples used by the Rocke group for cryptojacking reveals code that uninstalls from Linux servers multiple cloud security and monitoring products developed by Tencent Cloud and Alibaba Cloud [...]

Date: 

Thursday, January 17, 2019 - 11:00

Category: 

Fake GPS Apps with 50M Installs Just Show Ads and Run Google Maps

19 Android apps with over 50 million installs were found on the Google Play store that state that they are full featured GPS apps, but instead simply show an advertisement and then show Google Maps. [...]

Date: 

Thursday, January 17, 2019 - 11:26

Category: 

Android Apps Steal Banking Info, Use Motion Sensor to Evade Detection

Two Android apps infected with a banking malware dropper were found on the Google Play Store, already having been installed on thousands of Android devices and sporting dozens of fake five-star ratings. [...]

Date: 

Thursday, January 17, 2019 - 12:00

Category: 

ES File Explorer Flaws Put 100 Million Users' Data at Risk, Fix Promised

ES File Explorer users now have to wait to see what issue will be fixed in the next update: the always-on web server giving access to all their files to anyone on the same Wi-Fi network or the MitM attack vulnerability [...]

Date: 

Thursday, January 17, 2019 - 15:20

Category: 

Data Breach Collection with 773 Million Email Entries Leaked Online

A giant 87 gigabyte archive consisting of 773 million unique email addresses and their associated cracked, or dehashed, passwords has been spotted being promoted on an online hacking forum. This file is being called "Collection #1" and was designed to easily be used in credential stuffing attacks. [...]

Date: 

Thursday, January 17, 2019 - 16:06

Category: 

Pages

Subscribe to Security