Israeli orgs targeted with wiper malware via ESET-branded emails
Attackers have tried to deliver wiper malware to employees at organizations across Israel by impersonating cybersecurity company ESET via email. The phishing email The attack took the form of a phishing email ostensibly sent by the “Eset Advanc.....»»
Attackers are exploiting JetBrains TeamCity flaw to deliver a variety of malware
Attackers are exploiting the recently patched JetBrains TeamCity auth bypass vulnerability (CVE-2024-27198) to deliver ransomware, cryptominers and remote access trojans (RATs), according to Trend Micro researchers. The CVE-2024-27198 timeline CVE-20.....»»
Malware stands out as the fastest-growing threat of 2024
93% of IT professionals believe security threats are increasing in volume or severity, a significant rise from 47% last year, according to Thales. The number of enterprises experiencing ransomware attacks surged by over 27% in the past year. Despite.....»»
War survey: 83% of Israeli NGOs impacted, mixed responses to government aid, surge in foreign support
A survey conducted at the Hebrew University by Prof. Michal Almog-Bar, head of the Institute for the Study of Civil Society and Philanthropy, in collaboration with Civil Leadership, the umbrella organization of nonprofit organizations in Israel, anal.....»»
The most prevalent malware behaviors and techniques
An analysis of 100,000+ Windows malware samples has revealed the most prevalent techniques used by malware developers to successfully evade defenses, escalate privileges, execute the malware, and assure its persistence. Malware tactics and techniques.....»»
Growing AceCryptor attacks in Europe
ESET Research has recorded a considerable increase in AceCryptor attacks, with detections tripling between the first and second halves of 2023. In recent months, researchers registered a significant change in how AceCryptor is used, namely that the a.....»»
API environments becoming hotspots for exploitation
A total of 29% of web attacks targeted APIs over 12 months (January through December 2023), indicating that APIs are a focus area for cybercriminals, according to Akamai. API integration amplifies risk exposure for enterprises APIs are at the heart o.....»»
Security Bite: Here’s what malware your Mac can remove
Ever wonder what malware can your Mac detect and remove without any third-party software? Recently, security researchers have correlated some bizarre macOS YARA rules used by the built-in XProtect suite with their public names. Here’s what malware.....»»
Fujitsu finds malware on company systems, investigates possible data breach
Fujitsu Limited, the largest Japanese IT services provider, has announced that several of the company’s computers have been compromised with malware, leading to a possible data breach. Known details about the Fujitsu data breach The company pub.....»»
Fujitsu says it found malware on its corporate network, warns of possible data breach
Company apologizes for the presence of malware on company computers. Enlarge (credit: Getty Images) Japan-based IT behemoth Fujitsu said it has discovered malware on its corporate network that may have allowed the people.....»»
Nissan offers some U.S. dealers cash to take inventory in 11th-hour wholesale push
Nissan retailers began receiving emails and calls from factory reps offering $500 to $2,000 for every vehicle they accept. But dealers are already struggling with a triple-digit days' supply......»»
Week in review: Cybersecurity job openings, hackers use 1-day flaws to drop custom Linux malware
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Transitioning to memory-safe languages: Challenges and considerations In this Help Net Security interview, Omkhar Arasaratnam, General Manager at th.....»»
“You a—holes”: Court docs reveal Epic CEO’s anger at Steam’s 30% fees
Unearthed emails show the fury that helped motivate Epic's Games Store launch. Epic Games founder and CEO Tim Sweeney. (credit: Epic Games) Epic CEO Tim Sweeney has long been an outspoken opponent of what he sees as Valv.....»»
MobSF: Open-source security research platform for mobile apps
The Mobile Security Framework (MobSF) is an open-source research platform for mobile application security, encompassing Android, iOS, and Windows Mobile. MobSF can be used for mobile app security assessment, penetration testing, malware analysis, and.....»»
Keyloggers, spyware, and stealers dominate SMB malware detections
In 2023, 50% of malware detections for SMBs were keyloggers, spyware and stealers, malware that attackers use to steal data and credentials, according to Sophos. Attackers subsequently use this stolen information to gain unauthorized remote access, e.....»»
Study finds pronghorn population declining due to human development
Global species diversity is in decline almost everywhere, largely due to human-driven development and resource use. Typically, conservation efforts have targeted the most endangered species, which can lead to some tough choices on how to balance limi.....»»
Hackers leverage 1-day vulnerabilities to deliver custom Linux malware
A financially motivated threat actor is using known vulnerabilities to target public-facing services and deliver custom malware to unpatched Windows and Linux systems. Among the exploited vulnerabilities are also two recently discovered Ivanti Connec.....»»
Never-before-seen Linux malware gets installed using 1-day exploits
Discovery means that NerbianRAT is cross-platform used by for-profit threat group. Enlarge (credit: Getty Images) Researchers have unearthed Linux malware that circulated in the wild for at least two years before being i.....»»
Dear Tim, It’s time to get lost in the music
Dear Tim, I bought my first Apple product back in 2004, an HP-branded iPod. In 2005, I purchased a PowerBook G4 and have never looked back. I’ve been an Apple customer ever since, acquiring multiple iPhones, iPads, Apple TVs, and Apple Watches a.....»»
Week in review: Attackers use phishing emails to steal NTLM hashes, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: What organizations need to know about the Digital Operational Resilience Act (DORA) In this Help Net Security interview, Kris Lovejoy, Global Securi.....»»
What makes a pathogen antibiotic-resistant?
Antimicrobial resistance is a story of constantly moving parts and players. With every new or tweaked antibiotic or antimicrobial drug, the targeted pathogens begin the evolutionary dance of acquiring resistance, prompting researchers to constantly d.....»»