Virus / Malware

Retour à Sécurité

Malwarebytes

    • 14 avril 2021FBI shuts down malware on hundreds of Exchange servers, opens Pandora’s box
      A rather remarkable story has emerged, setting the scene for lively debates about permissible system access. A press release from the US Department of Justice Judge has revealed that the FBI were granted permission to perform some tech support backdoor removal. Bizarrely, they did this without letting the admins know beforehand. A campaign targeting vulnerable Exchange servers has left web shells …

    • 14 avril 2021Update now! Chrome needs patching against two in-the-wild exploits
      A day late and a dollar short is a well-known expression that comes in a few variations. But this version has a movie and a book to its name, so I’m going with this one. Why? Google has published an update for the Chrome browser that patches two newly discovered vulnerabilities. The browser’s Stable channel has been updated to 89.0.4389.128 for Windows, Mac and Linux. Both being exploited in …

    • 14 avril 2021Ransomware disrupts food supply chain, Exchange exploitation suspected
      When malware found its way into the network of Bakker Logistiek, a company specializing in the transport and warehousing of food and other products, on the night of 4 to 5 April, its IT systems ground to a halt. And, along with them, the reception of orders from clients, and the delivery of goods to branches of Albert Heijn, the largest supermarket chain in the Netherlands. With systems down, comp …

    • 13 avril 2021NAME:WRECK, a potential IoT trainwreck
      A set of vulnerabilities has been found in the way a number of popular TCP/IP stacks handle DNS requests. Potentially this could impact hundreds of millions of servers, smart devices, and industrial equipment. The researchers that discovered the vulnerabilities have named them NAME:WRECK. Plural vulnerabilities? Yes, the researchers found 9 DNS-related vulnerabilities that have the potential to al …

    • 13 avril 2021Sorry, Joe Biden isn’t offering you a work visa, it’s a scam
      A US diplomatic mission in Nigeria warns of a visa scam affecting Nigerian citizens looking to move to the United States. It’s an old scam message, dressed up with a fresh coat of paint. Shall we take a look? Fraud Alert!Scammers and fraudsters are circulating a fake “press release” claiming to offer a new type of work visa to Nigerian citizens aged 40-55. It’s the same old scam, but in fresh pack …

    • 12 avril 2021How ransomware gangs are connected, sharing resources and tactics
      Many of us who read the news daily encounter a regular drum beat of ransomware stories that are both worrying and heartbreaking. And what many of us don’t realize is that they are often interconnected. Some of the gangs behind the ransomware campaigns that we read about have established a relationship among each other that can be described as “being in league with each other”, yet they lack certai …

    • 12 avril 2021How bitcoin payments unmasked a man who hired a Dark Web contract killer
      An Italian citizen’s apparent attempt to hire a hitman on the Dark Web has been undone by clever analysis of his Bitcoin transactions. The man, who is reported to be an IT worker employed by a major corporation, is alleged to have paid the hitman to assassinate his former girlfriend. What happened? According to a news article published by European policing entity Europol on April 7, they ass …

    • 12 avril 2021Beating security fatigue with Troy Hunt, Chloé Messdaghi, and Tanya Janca: Lock and Code S02E06
      This week on Lock and Code, we discuss the top security headlines generated right here on Labs. In addition, we speak to Point3 Security chief strategist Chloé Messdaghi, HaveIBeenPwned founder Troy Hunt, and We Hack Purple founder and CEO Tanya Janca about security fatigue. Security fatigue is exactly what it sounds like. It’s the limit we all reach when security best practices become overb …

    • 9 avril 2021Millions of Chrome users quietly added to Google’s FLoC pilot
      Last month, Google began a test pilot of its Federated Learning of Cohorts—or FLoC—program, which the company has advertised as the newest, privacy-preserving alternative in Google Chrome to the infamous third-party cookie. Sounds promising, right? Well, about that. Despite Google’s rhetoric about maintaining user privacy, its FLoC trial leaves much to be desired. Google Chrome users had no choice …

    • 9 avril 2021Cryptomining containers caught coining cryptocurrency covertly
      In traditional software development, programmers code an application in one computing environment before deploying it to a similar, but often slightly different environment. This leads to bugs or errors that only show up when the software is deployed—exactly when you need them least. To solve for this, modern developers often bundle their applications together with all of the configuration files, …

ESET

    • 13 avril 2021WhatsApp flaw lets anyone lock you out of your account
      An attacker can lock you out of the app using just your phone number and without requiring any action on your part The post WhatsApp flaw lets anyone lock you out of your account appeared first on WeLiveSecurity …

    • 9 avril 2021Week in security with Tony Anscombe
      Janeleiro banking trojan takes aim at Brazil – Lazarus deploys Vyveva backdoor in South Africa – The long shelf life of leaked data The post Week in security with Tony Anscombe appeared first on WeLiveSecurity …

    • 9 avril 2021Data from 500 million LinkedIn accounts put up for sale
      The treasure trove of data reportedly includes users’ LinkedIn IDs, full names, email addresses, phone numbers and workplace information The post Data from 500 million LinkedIn accounts put up for sale appeared first on WeLiveSecurity …

    • 8 avril 2021Does data stolen in a data breach expire?
      Some personal information just doesn’t age – here’s what the Facebook data leak may mean for you The post Does data stolen in a data breach expire? appeared first on WeLiveSecurity …

    • 2 avril 2021Week in security with Tony Anscombe
      PHP source code briefly backdoored – Prevent data loss before it’s too late – The perils of owning a smart dishwasher The post Week in security with Tony Anscombe appeared first on WeLiveSecurity …

ESET Support