Malwarebytes
- 14 avril 2021FBI shuts down malware on hundreds of Exchange servers, opens Pandora’s box
A rather remarkable story has emerged, setting the scene for lively debates about permissible system access. A press release from the US Department of Justice Judge has revealed that the FBI were granted permission to perform some tech support backdoor removal. Bizarrely, they did this without letting the admins know beforehand. A campaign targeting vulnerable Exchange servers has left web shells … - 14 avril 2021Update now! Chrome needs patching against two in-the-wild exploits
A day late and a dollar short is a well-known expression that comes in a few variations. But this version has a movie and a book to its name, so I’m going with this one. Why? Google has published an update for the Chrome browser that patches two newly discovered vulnerabilities. The browser’s Stable channel has been updated to 89.0.4389.128 for Windows, Mac and Linux. Both being exploited in … - 14 avril 2021Ransomware disrupts food supply chain, Exchange exploitation suspected
When malware found its way into the network of Bakker Logistiek, a company specializing in the transport and warehousing of food and other products, on the night of 4 to 5 April, its IT systems ground to a halt. And, along with them, the reception of orders from clients, and the delivery of goods to branches of Albert Heijn, the largest supermarket chain in the Netherlands. With systems down, comp … - 13 avril 2021NAME:WRECK, a potential IoT trainwreck
A set of vulnerabilities has been found in the way a number of popular TCP/IP stacks handle DNS requests. Potentially this could impact hundreds of millions of servers, smart devices, and industrial equipment. The researchers that discovered the vulnerabilities have named them NAME:WRECK. Plural vulnerabilities? Yes, the researchers found 9 DNS-related vulnerabilities that have the potential to al … - 13 avril 2021Sorry, Joe Biden isn’t offering you a work visa, it’s a scam
A US diplomatic mission in Nigeria warns of a visa scam affecting Nigerian citizens looking to move to the United States. It’s an old scam message, dressed up with a fresh coat of paint. Shall we take a look? Fraud Alert!Scammers and fraudsters are circulating a fake “press release” claiming to offer a new type of work visa to Nigerian citizens aged 40-55. It’s the same old scam, but in fresh pack … - 12 avril 2021How ransomware gangs are connected, sharing resources and tactics
Many of us who read the news daily encounter a regular drum beat of ransomware stories that are both worrying and heartbreaking. And what many of us don’t realize is that they are often interconnected. Some of the gangs behind the ransomware campaigns that we read about have established a relationship among each other that can be described as “being in league with each other”, yet they lack certai … - 12 avril 2021How bitcoin payments unmasked a man who hired a Dark Web contract killer
An Italian citizen’s apparent attempt to hire a hitman on the Dark Web has been undone by clever analysis of his Bitcoin transactions. The man, who is reported to be an IT worker employed by a major corporation, is alleged to have paid the hitman to assassinate his former girlfriend. What happened? According to a news article published by European policing entity Europol on April 7, they ass … - 12 avril 2021Beating security fatigue with Troy Hunt, Chloé Messdaghi, and Tanya Janca: Lock and Code S02E06
This week on Lock and Code, we discuss the top security headlines generated right here on Labs. In addition, we speak to Point3 Security chief strategist Chloé Messdaghi, HaveIBeenPwned founder Troy Hunt, and We Hack Purple founder and CEO Tanya Janca about security fatigue. Security fatigue is exactly what it sounds like. It’s the limit we all reach when security best practices become overb … - 9 avril 2021Millions of Chrome users quietly added to Google’s FLoC pilot
Last month, Google began a test pilot of its Federated Learning of Cohorts—or FLoC—program, which the company has advertised as the newest, privacy-preserving alternative in Google Chrome to the infamous third-party cookie. Sounds promising, right? Well, about that. Despite Google’s rhetoric about maintaining user privacy, its FLoC trial leaves much to be desired. Google Chrome users had no choice … - 9 avril 2021Cryptomining containers caught coining cryptocurrency covertly
In traditional software development, programmers code an application in one computing environment before deploying it to a similar, but often slightly different environment. This leads to bugs or errors that only show up when the software is deployed—exactly when you need them least. To solve for this, modern developers often bundle their applications together with all of the configuration files, …
ESET
- 13 avril 2021WhatsApp flaw lets anyone lock you out of your account
An attacker can lock you out of the app using just your phone number and without requiring any action on your part The post WhatsApp flaw lets anyone lock you out of your account appeared first on WeLiveSecurity … - 12 avril 2021Clubhouse in the spotlight after user records posted online
Reports of another trove of scraped user data add to the recent woes of popular social media platforms The post Clubhouse in the spotlight after user records posted online appeared first on WeLiveSecurity … - 9 avril 2021Week in security with Tony Anscombe
Janeleiro banking trojan takes aim at Brazil – Lazarus deploys Vyveva backdoor in South Africa – The long shelf life of leaked data The post Week in security with Tony Anscombe appeared first on WeLiveSecurity … - 9 avril 2021Data from 500 million LinkedIn accounts put up for sale
The treasure trove of data reportedly includes users’ LinkedIn IDs, full names, email addresses, phone numbers and workplace information The post Data from 500 million LinkedIn accounts put up for sale appeared first on WeLiveSecurity … - 8 avril 2021Does data stolen in a data breach expire?
Some personal information just doesn’t age – here’s what the Facebook data leak may mean for you The post Does data stolen in a data breach expire? appeared first on WeLiveSecurity … - 8 avril 2021(Are you) afreight of the dark? Watch out for Vyveva, new Lazarus backdoor
ESET researchers discover a new Lazarus backdoor deployed against a freight logistics firm in South Africa The post (Are you) afreight of the dark? Watch out for Vyveva, new Lazarus backdoor appeared first on WeLiveSecurity … - 7 avril 2021$38 million worth of gift cards stolen and sold on dark web
Easy to redeem and hard to trace, gift cards remain a hot commodity in the criminal underground The post $38 million worth of gift cards stolen and sold on dark web appeared first on WeLiveSecurity … - 7 avril 2021Supply‑chain attacks: When trust goes wrong, try hope?
How can organizations tackle the growing menace of attacks that shake trust in software? The post Supply‑chain attacks: When trust goes wrong, try hope? appeared first on WeLiveSecurity … - 6 avril 2021Janeleiro, the time traveler: A new old banking trojan in Brazil
ESET Research uncovers a new threat that targets organizations operating in various sectors in Brazil The post Janeleiro, the time traveler: A new old banking trojan in Brazil appeared first on WeLiveSecurity … - 2 avril 2021Week in security with Tony Anscombe
PHP source code briefly backdoored – Prevent data loss before it’s too late – The perils of owning a smart dishwasher The post Week in security with Tony Anscombe appeared first on WeLiveSecurity …
ESET Support
- 15 mars 2021ESET Enterprise Inspector Hotfix version 1.5.1512.0 has been released
ESET Enterprise Inspector Hotfix version 1.5.1512.0 has been released and is available to download.
- 8 mars 2021ESET PROTECT Cloud users will be upgraded to Endpoint version 7.3
Beginning March 30, 2021, ESET PROTECT Cloud users with SHA256 compatible machines will be remotely upgraded to ESET Endpoint 7.3.
- 11 février 2021ESET PROTECT 8.0.19 and ESET PROTECT Cloud have been released
On Februrary 11, 2021 ESET PROTECT version 8.0.19 and ESET PROTECT Cloud is available for on-premise or Cloud deployment.
- 9 février 2021ESET MSP Administrator 2 and API hotfix release is coming
Hotfix release of EMA 2 and its API is scheduled for February 16, 2021.
- 5 février 2021ESET Business Account new version is coming
Several improvements and bug fixes.
- 17 décembre 2020Upgrade ESET PROTECT to version 8.0.17.1 to fix Web Console login failure
If you upgraded to ESET PROTECT 8.0 and are unable to log into the Web Console because your username or password contains special characters, upgrade to ESET PROTECT version 8.0.17.1 to resolve this issue.
- 9 décembre 2020ESET Full Disk Encryption for macOS version 1.2.0.8 have been released
On December 8, 2020 ESET Full Disk Encryption (EFDE) for macOS version 1.2.0.8 has been released and is available in the management console repository.
- 9 décembre 2020ESET Endpoint Security and ESET Endpoint Antivirus version 8.0.2028.0 have been released
Release Date: December 9, 2020 ESET Endpoint Antivirus and ESET Endpoint Security version 8.0.2028.0 have been released and are available for download.
- 9 décembre 2020ESET PROTECT 8.0 and ESET PROTECT Cloud have been released
On December 9, 2020 ESET PROTECT version 8.0 is available for on-premise or Cloud installation.
- 20 novembre 2020ESET Full Disk Encryption (EFDE) version 1.2.2.8 has been released
On November 18, 2020 ESET Full Disk Encryption (EFDE) version 1.2.2.8 has been released and is available in the management console repository.