Blog

Archive for the ‘cybercrime/malcode’ category: Page 158

Dec 3, 2019

‘StrandHogg’ Vulnerability Allows Malware to Pose as Legitimate Android Apps

Posted by in category: cybercrime/malcode

The flaw can allow hackers to take over typical device functions like sending messages and taking photos because users think malicious activity is a mobile app they use regularly.

Dec 2, 2019

This trojan malware is being used to steal passwords and spread ransomware

Posted by in category: cybercrime/malcode

PyXie RAT capabilities include keylogging, stealing login credentials and recording videos, warn researchers at BlackBerry Cylance — who also say the trojan can be used to distribute other attacks, including ransomware.

Dec 2, 2019

ESP32 IoT Devices Vulnerable to Forever-Hack

Posted by in categories: cybercrime/malcode, internet

A popular WiFi chip, ESP32, contains a security flaw that enables hackers to implant malware that can never be removed. The attack works by implanting code into eFuses, a chip feature that can only be configured once.

Nov 29, 2019

Cowlitz County PUD among U.S. utilities targeted in cyberattacks

Posted by in category: cybercrime/malcode

The Cowlitz County PUD is among more than a dozen utilities targeted in a recent cyberattack across the United States, according to an investigation by The Wall Street Journal published this week.

Cowlitz County PUD spokeswoman Alice Dietz confirmed Wednesday that the PUD’s firewall successfully blocked the only infected email that hackers sent.

“We’re proud of our IT department,” Dietz said. “They just continue to implement strong cybersecurity measures. This is a great example of why we take it so seriously.”

Nov 26, 2019

New Crypto-Stealing Malware Infected 80,000 Computers, Microsoft Says

Posted by in categories: cryptocurrencies, cybercrime/malcode

Microsoft security analysts reveal that cryptocurrency-stealing malware “Dexphot” already infected 80,000 computers earlier this year.

Microsoft reveals that new crypto-stealing malware “Dexphot” already infected 80,000 devices earlier this year.

Nov 26, 2019

Microsoft says new Dexphot malware infected more than 80,000 computers

Posted by in categories: cryptocurrencies, cybercrime/malcode

Microsoft security engineers detailed today a new malware strain that has been infecting Windows computers since October 2018 to hijack their resources to mine cryptocurrency and generate revenue for the attackers.

Named Dexphot, this malware reached its peak in mid-June this year, when its botnet reached almost 80,000 infected computers.

Since then, the number of daily infections has been slowly going down, as Microsoft claims it deployed countermeasures to improve detections and stop attacks.

Nov 26, 2019

Pemex Still Suffers Cyberattack Fallout

Posted by in categories: cybercrime/malcode, encryption

O.o…


The communications system of Mexico’s oil giant Pemex is still suffering the lingering effects of a cyberattack that occurred earlier this month, sources from the company told Bloomberg.

A ransomware attack caused administrative operations at Pemex to grind to a halt on November 10, with the company announcing the resumption of work soon after, saying the actual attack had been prevented.

Continue reading “Pemex Still Suffers Cyberattack Fallout” »

Nov 25, 2019

Hackers demand $14 million from nursing homes in ransomware attack

Posted by in categories: biotech/medical, cybercrime/malcode

Some facilities unable to access patient records, order drugs or pay employees after their computers were hijacked.

Nov 25, 2019

T-Mobile Reveals A Security Breach Affecting Prepaid Users

Posted by in category: cybercrime/malcode

Adding one more to the count of data breaches this year, now joins the cellular firm T-Mobile. Recently, T-Mobile has disclosed a security breach impacting some of its customers.

T-Mobile Disclosed Security Breach

According to the security notice shared by T-Mobile, the firm has (once again) suffered a security breach. The incident has reportedly impacted prepaid consumers.

Nov 25, 2019

A hacking group is hijacking Docker systems with exposed API endpoints

Posted by in category: cybercrime/malcode

It’s almost 2020 and some sysadmins are still leaving Docker admin ports exposed on the internet.