A Raspberry Pi, trained using malware activity, was able to predict an ongoing attack by monitoring specific electromagnetic waves. This detection system is independent of the potential targets.
Malware RSS
A malicious email that claims to be an employee termination letter is doing the rounds on the internet. This email is actually a Dridex malware attack and hopes to trick its potential victims.
Google says it is working with partners to disrupt the resilient Glupteba botnet. It is also taking legal action against the suspected botnet operators to put a permanent stop to the botnet.
A fake KMSPico Windows activator has been discovered by security company Red Canary. The malware is capable of stealing information from various crypto wallets, among other things, using a Cryptbot.
It's been a relatively slow week due to the holidays in the U.S., but there are still notable news items you might want to catch up on including a complaint against Microsoft in the EU.
Free and light benchmarking utility UserBenchmark is flagged by close to two dozen anti-virus programs as malware, according to VirusTotal. Windows Security, too, flags it as a "Severe" trojan.
This week, Insiders finally got their hands on Android apps on Windows, new builds for Windows 11, Windows 10 21H1, and Windows 10 21H2. Details about Halo Infinite's PC version were revealed too.
A WHQL-certified driver called "FiveSys" was detected by Bitdefender which was, in reality, a malicious rootkit. After learning about it, the driver's signature has since been removed by Microsoft.
46 hours of content on Pen Test, Network Scan, Cloud Security & More! Start your journey as an ethical hacker and efficiently fix vulnerabilities and threats for next to nothing with Neowin Deals!
"Made on Windows 11 Alpha" themed malicious Microsoft Word documents have been discovered by the security researchers at Anomali. The maldoc implements VBA macros to deliver a JavaScript payload.
A new Ursnif 2021 variant, which is a known banking trojan, is infecting victim machines by disguising itself as a reCAPTCHA test, which leads the victim to unknowingly download the malware.
A new eCh0raix ransomware variation has been infecting NAS devices since last year according to a report. The new variant can now attack both QNAP and Synology NAS systems simultaneously.
Kaspersky has issued an advisory about people getting their machines infected with malware by downloading fake Windows 11 installers like "86307_windows 11 build 21996.1 x64 + activator.exe".
After releasing mitigations for a cyberattack that utilizes "DevilsTongue" malware developed by an Israeli company recently, Microsoft says that it is cracking down on private-state offensive actors.
Microsoft has issued an advisory about a cyberattack from a Chinese group targeting SolarWinds' products. A hotfix has been released but organizations are still advised to review guidance.
Malicious activity from Nobelium - which has been previously linked to the Russian foreign intelligence agency and the SolarWind attacks - has been detected. Microsoft has issued an advisory.
The official Python software repository, PyPI, was discovered to host six packages that would download and install cryptomining software on affected systems according to a new report.
Apple has detailed the threats that sideloading of apps poses on user privacy and security. An executive has also stated that iOS is not the platform for you if you want to engage in this activity.
Google is rolling out security enhancements to the Enhanced Safe Browsing experience in Chrome 91. The browser will inform you which extensions are trusted and will also scan risky files on demand.
After another Nobelium cyberattack, Microsoft has emphasized the need to differentiate between "espionage as usual" acts and crippling attacks like SolarWinds. It has encouraged cloud adoption too.
Defending Apple's tight control over iOS in court today, the firm's chief of software Craig Federighi said that macOS with its lighter controls on app installs has an unacceptable amount of malware.
MSI has warned that malicious actors are using a fake download page for MSI's Afterburner tool to distribute malware. The official webpage for the software is currently unavailable.
Microsoft Defender for Endpoint has been enhanced using advancements in Intel Threat Detection Technology to detect cryptojacking attacks via machine learning heuristics based on CPU telemetry.
In a sort of "year in review" for 2020, Google has disclosed some of the methods it enforced to combat the distribution of malicious content in the Play Store, along with some accompanying statistics.
Researchers have discovered a new Android malware that could collect personal user data hidden in a fake Netflix app on the Google Play Store. The malware also spread using WhatsApp.
Facebook has disrupted a cyber espionage operation being carried out against Uyghur activists living abroad. The malicious activity has been attributed to a sophisticated Chinese hacking group.
Microsoft has enabled runtime inspection of XLM macros in Microsoft Excel. The macro language is a legacy piece of technology from 1992 still used by some companies, but is under attack now.
Recently, a mysterious new macOS malware was spotted in the wild which has infected nearly 30,000 Intel and M1 Macs. Apple is now deploying countermeasures to mitigate the potential threat.
A new strain of macOS malware is raising some alarms in the security industry due to its highly sophisticated mechanisms of distribution, self-destruction, and the mysterious lack of a payload.
Microsoft Defender for Endpoint is falsely flagging the latest Chrome update released yesterday as a Funvalget backdoor. Some reports suggest that an updated definition has fixed the false positive.
Microsoft has issued a warning about a highly dangerous malware family infecting Chrome, Edge, Firefox, and Yandex to insert ads into search results. On Firefox, it also steals user credentials.
Printer driver files from Dell are being flagged as unsafe by anti-virus engines like Avast, McAfee, Fortinet, and more. Logs on Virus Total suggest that they are flagged as malware and trojans.
Nokia has released the latest edition of its Threat Intelligence Report. The document reveals that cyberattacks on IoT devices are increasing at an alarming rate due to poor security.
Mastering Malware Analysis explains the universal patterns behind different malicious software types and how to analyze them using a variety of approaches. This free offer expires today!
Mastering Malware Analysis explains the universal patterns behind different malicious software types and how to analyze them using a variety of approaches. Claim yours before the offer expires!
Mastering Malware Analysis explains the universal patterns behind different malicious software types and how to analyze them using a variety of approaches. Claim yours before the offer expires!
A recently-discovered strand of Android malware has been infecting devices since 2016, resorting to various techniques to steal all kinds of user data while remaining a secret to most users.
A ransomware Android app has been discovered which poses as a COVID-19 tracker app. It locks users out of their device and threatens to delete their data if the user does not pay $100 in bitcoin.
Thoma Bravo, a private equity firm, has announced its acquisition of the cybersecurity firm Sophos. Sophos' stockholders agreed to the takeover in December. Sophos was sold for $3.9 billion in cash.
Before being patched, the encryption vulnerability dubbed 'Kr00k', could have affected over a billion devices running Broadcom and Cyprus chipsets, including the iPhone and Samsung Galaxy lineup.